Schneider Electric Quantum Ethernet Module Hardcoded Credentials Authentication Bypass Vulnerability

Bugtraq ID: 51046
Class: Input Validation Error
CVE: CVE-2011-4859
Remote: Yes
Local: No
Published: Dec 13 2011 12:00AM
Updated: Sep 25 2013 12:15AM
Credit: Rubén Santamarta
Vulnerable: Schneider Electric Quantum Ethernet Module TSXP576634M 3.5
Schneider Electric Quantum Ethernet Module TSXP575634M 3.5
Schneider Electric Quantum Ethernet Module TSXP574634M 3.5
Schneider Electric Quantum Ethernet Module TSXP573634M 4.9
Schneider Electric Quantum Ethernet Module TSXP572634M 4.9
Schneider Electric Quantum Ethernet Module TSXP571634M 4.9
Schneider Electric Quantum Ethernet Module TSXETY5103 5.0
Schneider Electric Quantum Ethernet Module TSXETY4103 5.0
Schneider Electric Quantum Ethernet Module TSXETC101 1.01
Schneider Electric Quantum Ethernet Module STBNIP2311 3.01
Schneider Electric Quantum Ethernet Module STBNIP2212 2.73
Schneider Electric Quantum Ethernet Module STBNIC2212 2.10
Schneider Electric Quantum Ethernet Module STBNIC2212 2.10
Schneider Electric Quantum Ethernet Module BMXP342030 2.2
Schneider Electric Quantum Ethernet Module BMXP342020 2.2
Schneider Electric Quantum Ethernet Module BMXNOE0110 4.65
Schneider Electric Quantum Ethernet Module BMXNOE0100 2.3
Schneider Electric Quantum Ethernet Module BMXNOC0401 1.01
Schneider Electric Quantum Ethernet Module 140NOE77111 5.0
Schneider Electric Quantum Ethernet Module 140NOE77110 3.3
Schneider Electric Quantum Ethernet Module 140NOE77101 Firmware 4.9
Schneider Electric Quantum Ethernet Module 140NOE77100 3.4
Schneider Electric Quantum Ethernet Module 140NOC77101 1.01
Schneider Electric Quantum Ethernet Module 140NOC77100 1.01
Schneider Electric Quantum Ethernet Module 140CPU65260 3.5
Schneider Electric Quantum Ethernet Module 140CPU65160 3.5
Schneider Electric Quantum Ethernet Module 140CPU65150 3.5
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus