Schneider Electric InduSoft Web Studio < 7.1.3.4 Multiple Information Disclosures (SEVD-2015-054-01)

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

The InduSoft Web Studio software running on the remote host is
affected by multiple information disclosure vulnerabilities.

Description :

According to its self-reported version, the installation of Schneider
Electric InduSoft Web Studio running on the remote host is prior to
7.1.3.4. It is, therefore, affected by the multiple information
disclosure vulnerabilities :

- A hard-coded plaintext password is used to control read
access to files. A local attacker can exploit this to
access sensitive information stored in project and
project configuration files. (CVE-2015-0996)

- The HMI user interface presents valid usernames to the
screen when connecting to the server via the HMI. A
remote attacker can use this information to conduct
brute-force password attacks. (CVE-2015-0997)

- User credentials are transmitted in cleartext. A
man-in-the-middle attacker can exploit this, by sniffing
the network, to obtain user credentials. (CVE-2015-0998)

- OPC user credentials are stored in plaintext in a
configuration file. A local attacker can exploit this to
obtain user credentials. (CVE-2015-0999)

See also :

http://www.nessus.org/u?c079607c
https://ics-cert.us-cert.gov/advisories/ICSA-15-085-01A

Solution :

Upgrade to Schneider Electric InduSoft Web Studio 7.1.3.4 or later.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)

Family: SCADA

Nessus Plugin ID: 84263 ()

Bugtraq ID: 73378
73386
73387
73389

CVE ID: CVE-2015-0996
CVE-2015-0997
CVE-2015-0998
CVE-2015-0999

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now