[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] All your PLC are belong to us (2)

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] All your PLC are belong to us (2)
From: scadastrangelove <scadastrangelove@xxxxxxxxx>
Date: Wed, 19 Mar 2014 10:44:53 +0400

Fixes for Siemens S7 1500 PLC are published.
Thanks to Yury Goltsev <https://twitter.com/ygoltsev>, Ilya Karpov, Alexey
Osipov <https://twitter.com/GiftsUngiven>, Dmitry
Serebryannikov<https://twitter.com/dsrbr>and Alex
Timorin <https://twitter.com/atimorin>.
There are a lot of, but Authentication bypass (INSUFFICIENT
ENTROPY/CVE-2014-2251) is the best.

Links: 
http://scadastrangelove.blogspot.com/2014/03/all-your-plc-are-belong-to-us-2.html


More details are pending.

Regards,
SCADA StrangeLove team

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] Bank of the West security contact?
Next by Date: [Full-disclosure] Kaspersky 14.0.0.4651 RegExp Remote Denial of Service PoC2
Previous by thread: [Full-disclosure] McAfee Cloud SSO and McAfee Asset Manager vulns
Next by thread: [Full-disclosure] Kaspersky 14.0.0.4651 RegExp Remote Denial of Service PoC2
Index(es):
- Date
- Thread