WAGO Multiple Remote Vulnerabilities

http://www.securityfocus.com/bid/51598

Security Info

Bugtraq ID:	51598
Class:	Unknown
CVE:
Remote:	Yes
Local:	No
Published:	Jan 20 2012 12:00AM
Updated:	Jun 19 2012 10:10PM
Credit:	Alexandr Polyakov from DSecRG
Vulnerable:	WAGO WAGO 758-874 0 WAGO WAGO 750-841 0

Not Vulnerable:

Security Discussion

WAGO is prone to multiple security vulnerabilities, including:

1. A security-bypass vulnerability
2. Multiple information-disclosure vulnerabilities
3. A cross-site request forgery vulnerability

Successful attacks can allow an attacker to obtain sensitive information, bypass certain security restrictions, and perform unauthorized administrative actions.

Proof of Concept and Security Exploits

Attackers can use a browser to exploit these issues.

Security Solution(s)

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.

Security References(s)

References:

[DSECRG-12-001] WAGO PLC - default passwords [0-day] (Alexandr Polyakov from DSecRG)
[DSECRG-12-002] WAGO PLC 750 - unauthorized firmware download [0-day] (Digital Security Research Group)
[DSECRG-12-003] WAGO PLC 750 - information disclosure [0-day] (Digital Security Research Group)
[DSECRG-12-004] WAGO PLC 750 - CSRF password change [0-day] (Digital Security Research Group)
Wago Homepage (Wago)
ICS-ALERT-12-020-07â??WAGO I/O 750 MULTIPLE VULNERABILITES (ICS-CERT)

Emagined Security Blog featuring Dr. Eugene Schultz

Secure Web Programming
by Vizual Services