Multiple Schneider Electric Modicon PLC Modules Directory Traversal
Critical Nessus Network Monitor Plugin ID 7154
SynopsisA Schneider Electric Modicon programmable logic controller (PLC) communications module containing a directory traversal vulnerability has been detected.
DescriptionSchneider Electric Ethernet modules for Modicon M340, Modicon Quantum, and Modicon Premium PLCs in addition to Modicon Momentum, Modicon TSX Micro, and Modicon STB modules that provide HTTP services contain a directory traversal vulnerability. Attackers can remotely bypass web server authentication thereby achieving unauthenticated administrative access and control of the device.
SolutionSee Schneider Electric's Security Advisory, SEVD-2014-260-01, for a list of firmware updates that fix this issue.