Modicon Quantum Telnet Server Default Credentials

medium Nessus Plugin ID 23827

Synopsis

The remote Telnet server can be accessed with a default set of credentials.

Description

The remote device appears to be a Modicon Quantum controller that can be accessed via Telnet using default credentials. An attacker could leverage this issue to gain administrative access to the affected device.

Solution

Change the default password or block access to the port.

Plugin Details

Severity: Medium

ID: 23827

File Name: scada_modicon_telnet.nbin

Version: 1.85

Type: remote

Family: SCADA

Published: 12/11/2006

Updated: 5/20/2024

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 6.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: Exploits are available

Reference Information

BID: 51605

ICS-ALERT: 12-020-03