Modicon Modbus/TCP UnityPro Programming Function Code Access

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

A Modicon PLC Modbus TCP interface is listening on TCP port 502 and is
accessible via the Schneider Electric UnityPro function code 90.

Description :

A Modicon PLC Modbus TCP interface is listening on TCP port 502 and is
accessible via the Schneider Electric UnityPro function code 90. An
attacker that is able to gain network access to this device can
reprogram PLC logic or otherwise impact the integrity of the device.

Solution :

Restrict incoming traffic on this port to authorized Modbus TCP
clients.

Risk factor :

Medium / CVSS Base Score : 6.4
(CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:P)

Family: SCADA

Nessus Plugin ID: 97436 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now