WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms have a default username and password, which makes it easier for remote attackers to obtain superadmin access via the web interface, a different vulnerability than CVE-2009-4463.
Weaknesses in this category are related to the management of credentials.
Link | Tags |
---|---|
http://www.us-cert.gov/control_systems/pdf/ICSA-10-316-01A.pdf | us government resource |
http://archives.neohapsis.com/archives/bugtraq/2010-10/0002.html | mailing list exploit |