Marel Food Processing Systems Security Bypass and Arbitrary File Upload Vulnerabilities

Marel Food Processing Systems are prone to following security vulnerabilities:

1. A security-bypass vulnerability.
2. An arbitrary file-upload vulnerability.

Attackers can exploit these issues to upload arbitrary files and gain unauthorized administrative access to the affected devices.

The following products are vulnerable:

SensorX23 X-ray machine
SensorX25 X-ray machine
MWS2 weighing system
M3000 terminal, M3210 terminal , M3000 desktop software, and MAC4 controller associated with the following systems:

A320
A325
A371
A520 Master
A520 Slave
A530
A542
A571
Check Bin Grader
FlowlineQC T376
IPM3 Dual Cam v132
IPM3 Dual Cam v139
IPM3 Single Cam v132
P520
P574
SensorX13 QC flow line
SensorX23 QC Master
SensorX23 QC Slave
Speed Batcher
T374
T377
V36
V36B
V36C


 

Privacy Statement
Copyright 2010, SecurityFocus