Sensitive information can be obtained from the GE D20 Remote Terminal Unit via TFTP

high Nessus Plugin ID 57602

Synopsis

The remote SCADA device is affected by an information disclosure vulnerability.

Description

The remote device is a GE D20 Remote Terminal Unit that makes its configuration file available over TFTP. This file contains sensitive data such as plaintext usernames and passwords.

Solution

Block access to this port.

Plugin Details

Severity: High

ID: 57602

File Name: scada_tftp_d20_sensitive_data.nbin

Version: 1.60

Type: remote

Family: SCADA

Published: 1/19/2012

Updated: 7/19/2022

Risk Information

CVSS v2

Risk Factor: High

Base Score: 9.4

Temporal Score: 8.5

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:N

Temporal Vector: E:POC/RL:U/RC:ND

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Reference Information

BID: 51578

ICS-ALERT: 12-019-01