Required CVE Record Information
Description
Softing FG-100 PB PROFIBUS firmware version FG-x00-PB_V2.02.0.00 contains a hardcoded password for the root account, which allows remote attackers to obtain administrative access via a TELNET session.
References 5 Total
- securityfocus.com: 70927 vdb-entry
- exchange.xforce.ibmcloud.com: fg100pb-cve20146617-default-account(98512) vdb-entry
- securityfocus.com: 20141105 CVE-2014-6617 Softing FG-100 Backdoor Account mailing-list
- https://www.compass-security.com/fileadmin/Datein/Research/Advisories/CSNC-2014-005_softring_backdoor_account.txt
- http://packetstormsecurity.com/files/128976/Softing-FG-100-PB-Hardcoded-Backdoor.html
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- securityfocus.com: 70927 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: fg100pb-cve20146617-default-account(98512) vdb-entryx_transferred
- securityfocus.com: 20141105 CVE-2014-6617 Softing FG-100 Backdoor Account mailing-listx_transferred
- https://www.compass-security.com/fileadmin/Datein/Research/Advisories/CSNC-2014-005_softring_backdoor_account.txt x_transferred
- http://packetstormsecurity.com/files/128976/Softing-FG-100-PB-Hardcoded-Backdoor.html x_transferred