CVE-2014-5414

Sažetak

Beckhoff Embedded PC images before 2014-10-22 and Automation Device Specification (ADS) TwinCAT components do not restrict the number of authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.

Reference

http://www.securityfocus.com/bid/93349
https://ics-cert.us-cert.gov/advisories/ICSA-16-278-02

CVSS

Base:	9.4
Impact:	9.2
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:N

Zadnje važnije ažuriranje

28-11-2016 - 19:12

Objavljeno

05-10-2016 - 10:59