DNP3 Binary Inputs Access Remote Information Disclosure

This script is Copyright (C) 2006-2011 Tenable Network Security, Inc.


Synopsis :

It is possible to read binary inputs using DNP3 from RTU/IED.

Description :

DNP3 Application Layer function code 1 (Read) allows object values to
be read across the network. Binary input settings are typically
mapped to relays or other sensors which are either on or off.

The ability to read binary inputs may help an attacker profile a
system.

Solution :

Restrict access to TCP port 20000.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)

Family: SCADA

Nessus Plugin ID: 23809 ()

Bugtraq ID:

CVE ID: