Rockwell Automation MicroLogix 1400 PLC Default Credentials

critical Nessus Plugin ID 90599

Synopsis

The remote device can be accessed with default credentials.

Description

The remote device appears to be a Rockwell Automation MicroLogix 1400 PLC that can be accessed using default HTTP credentials. An attacker can exploit this to gain administrative access to the affected device.

Solution

Change the default password or block access to the port.

See Also

http://www.nessus.org/u?a06e6e46

Plugin Details

Severity: Critical

ID: 90599

File Name: scada_rockwell_micrologix_1400_plc_default_http.nbin

Version: 1.80

Type: remote

Family: SCADA

Published: 4/20/2016

Updated: 3/19/2024

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/h:rockwellautomation:ab_micrologix_controller:1400

Required KB Items: SCADA/Rockwell Automation MicroLogix 1400 PLC Web Server

Excluded KB Items: global_settings/supplied_logins_only

Vulnerability Publication Date: 11/6/2006