Modicon FTP Default Account/Password Usage (SCADA)

Critical Nessus Network Monitor Plugin ID 6277

Synopsis

The remote Modicon server is still configured with default credentials for its FTP service.

Description

The remote Modicon SCADA device is configured with the default user account of qbf77101 and the default password of hexakisoctahedron. These credentials were observed on the FTP port.

Solution

Change all default passwords upon server/software installation.

Plugin Details

Severity: Critical

ID: 6277

Family: SCADA

Published: 2012/01/19

Modified: 2016/01/15

Dependencies: 6275

Risk Information

Risk Factor: Critical