Schneider Electric FTP Server Default Credentials
Critical Nessus Plugin ID 23821
SynopsisThe remote FTP server has one or more accounts with default / backdoor credentials.
DescriptionThe remote FTP server has an account with a known username / password combination, which is hardcoded into the device's firmware and difficult to change or remove. An attacker may be able to use this to gain privileged authenticated access to the system, which could allow for other attacks against the affected device.
SolutionBlock access to the vulnerable device ports.