DNP3 Binary Inputs Access Remote Information Disclosure
Medium Nessus Plugin ID 23809
SynopsisIt is possible to read binary inputs using DNP3 from RTU/IED.
DescriptionDNP3 Application Layer function code 1 (Read) allows object values to be read across the network. Binary input settings are typically mapped to relays or other sensors which are either on or off.
The ability to read binary inputs may help an attacker profile a system.
SolutionRestrict access to TCP port 20000.