EUVD-2016-5487

Malware in sbrugna...

Moxa Discontinuing Vulnerable Line of ICS Devices

A vulnerability that exists in embedded computers manufactured by Moxa could allow remote authenticated users to overwrite firmware, in turn rendering the devices unusable. Moxa, a Taiwan-based networking company, announced recently that instead of patching the line of products affected by the...

CVE-2016-4500

The CVE-2016-4500 entry concerns Moxa UC-7408 LX-Plus devices where remote authenticated users can write to the firmware and render a device unusable by leveraging root access. Technical details indicate missing authentication for critical function (CWE-306) enabling a firmware overwrite that is ...

CVE-2016-4500

Moxa UC-7408 LX-Plus devices allow remote authenticated users to write to the firmware, and consequently render a device unusable, by leveraging root access...

Moxa UC 7408-LX-Plus Firmware Overwrite Vulnerability

OVERVIEW NCCIC/ICS-CERT has received information from a third party that identified a firmware overwrite vulnerability in Moxa’s UC 7408-LX-Plus device. Moxa has produced instructions to reduce exposure to this vulnerability. The Moxa UC 7408-LX-Plus device has been discontinued. This vulnerabili...