Short Name |
DB:MS-SQL:WINCC-DEFAULT-PASS |
---|---|
Severity |
Critical |
Recommended |
No |
Recommended Action |
Drop |
Category |
DB |
Keywords |
Siemens SIMATIC WinCC Default Password |
Release Date |
2010/07/21 |
Update Number |
1737 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects usage of a default account and password supplied with the Siemens SIMATIC WinCC SCADA device management application. Usage of this default account can allow an attacker access to the application's database.
Siemens SIMATIC WinCC is affected by a vulnerability that allows attackers to bypass security. An attacker can exploit this issue to bypass certain security restrictions and gain access to the application's database. Successfully exploiting this issue may lead to further attacks.