Details of VAR-201204-0037

ID

VAR-201204-0037

CVE

CVE-2012-2441

TITLE

RuggedCom Rugged Operating System (ROS) contains hard-coded user account with predictable password

Trust: 0.8

sources: CERT/CC: VU#889195

DESCRIPTION

RuggedCom Rugged Operating System (ROS) before 3.3 has a factory account with a password derived from the MAC Address field in a banner, which makes it easier for remote attackers to obtain access by performing a calculation on this address value, and then establishing a (1) SSH or (2) HTTPS session, a different vulnerability than CVE-2012-1803. RuggedCom Rugged Operating System (ROS) contains a hard-coded user account with a predictable password. RuggedCom Inc is the world's leading manufacturer of high-performance networking and communication equipment for industrial environments. ROS also supports HTTP(S) and SSH services. It is currently incorrect whether these services use the factory, and it is also unclear whether successful or unsuccessful login attempts will be recorded. Ros is prone to a remote security vulnerability. ---------------------------------------------------------------------- Become a PSI 3.0 beta tester! Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface. Download it here! http://secunia.com/psi_30_beta_launch ---------------------------------------------------------------------- TITLE: RuggedCom Rugged Operating System Undocumented Account Security Issue SECUNIA ADVISORY ID: SA48963 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/48963/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=48963 RELEASE DATE: 2012-04-25 DISCUSS ADVISORY: http://secunia.com/advisories/48963/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/48963/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=48963 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: JC CREW has reported a security issue in RuggedCom Rugged Operating System (ROS), which can be exploited by malicious people to bypass certain security restrictions. SOLUTION: Restrict access to trusted hosts only. PROVIDED AND/OR DISCOVERED BY: JC CREW ORIGINAL ADVISORY: JC CREW: http://archives.neohapsis.com/archives/fulldisclosure/2012-04/0276.html US-CERT: http://www.kb.cert.org/vuls/id/889195 OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 3.42

sources: NVD: CVE-2012-2441 // CERT/CC: VU#889195 // JVNDB: JVNDB-2012-002167 // CNVD: CNVD-2012-2154 // BID: 78199 // IVD: ec100d6a-2353-11e6-abef-000c29c66e3d // PACKETSTORM: 112186

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: ec100d6a-2353-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-2154

AFFECTED PRODUCTS

vendor:	siemens	model:	ruggedcom rugged operating system	scope:	lt	version:	3.3.0	Trust: 1.0
vendor:	ruggedcom	model:	ros	scope:	eq	version:	3.2	Trust: 0.9
vendor:	ruggedcom	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	ruggedcom	model:	rugged operating system	scope:	lt	version:	3.3	Trust: 0.8
vendor:	ruggedcom	model:	rugged operating system	scope:	eq	version:	3.9.1	Trust: 0.6
vendor:	ros	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: ec100d6a-2353-11e6-abef-000c29c66e3d // CERT/CC: VU#889195 // CNVD: CNVD-2012-2154 // BID: 78199 // JVNDB: JVNDB-2012-002167 // CNNVD: CNNVD-201204-542 // NVD: CVE-2012-2441

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2012-2441
value:	HIGH
Trust: 1.0
NVD:	CVE-2012-1803
value:	HIGH
Trust: 0.8
NVD:	CVE-2012-2441
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201204-542
value:	HIGH
Trust: 0.6
IVD:	ec100d6a-2353-11e6-abef-000c29c66e3d
value:	HIGH
Trust: 0.2

nvd@nist.gov:	CVE-2012-2441
severity:	HIGH
baseScore:	8.5
vectorString:	AV:N/AC:M/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.8
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
NVD:	CVE-2012-1803
severity:	HIGH
baseScore:	8.5
vectorString:	NONE
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.8
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
IVD:	ec100d6a-2353-11e6-abef-000c29c66e3d
severity:	HIGH
baseScore:	8.5
vectorString:	AV:N/AC:M/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.8
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

sources: IVD: ec100d6a-2353-11e6-abef-000c29c66e3d // CERT/CC: VU#889195 // JVNDB: JVNDB-2012-002167 // CNNVD: CNNVD-201204-542 // NVD: CVE-2012-2441

PROBLEMTYPE DATA

problemtype:	CWE-521	Trust: 1.0
problemtype:	CWE-310	Trust: 0.8

sources: JVNDB: JVNDB-2012-002167 // NVD: CVE-2012-2441

THREAT TYPE

remote

Trust: 1.2

sources: CNNVD: CNNVD-201205-011 // CNNVD: CNNVD-201204-542

TYPE

encryption problem

Trust: 0.6

sources: CNNVD: CNNVD-201204-542

CONFIGURATIONS

sources: JVNDB: JVNDB-2012-002167

EXPLOIT AVAILABILITY

sources: CERT/CC: VU#889195

PATCH

title:

Latest news on ROS Device Security Issue

url:

http://www.ruggedcom.com/productbulletin/ros-security-page/

Trust: 0.8

sources: JVNDB: JVNDB-2012-002167

EXTERNAL IDS

db:	CERT/CC	id:	VU#889195	Trust: 4.2
db:	NVD	id:	CVE-2012-2441	Trust: 2.9
db:	ICS CERT ALERT	id:	ICS-ALERT-12-116-01A	Trust: 2.7
db:	ICS CERT	id:	ICSA-12-146-01A	Trust: 1.6
db:	BID	id:	53215	Trust: 1.2
db:	CNNVD	id:	CNNVD-201204-542	Trust: 0.8
db:	ICS CERT ALERT	id:	ICS-ALERT-12-116-01	Trust: 0.8
db:	ICS CERT	id:	ICSA-12-146-01	Trust: 0.8
db:	JVNDB	id:	JVNDB-2012-002167	Trust: 0.8
db:	CNVD	id:	CNVD-2012-2154	Trust: 0.6
db:	CNNVD	id:	CNNVD-201205-011	Trust: 0.6
db:	BID	id:	78199	Trust: 0.3
db:	IVD	id:	EC100D6A-2353-11E6-ABEF-000C29C66E3D	Trust: 0.2
db:	SECUNIA	id:	48963	Trust: 0.2
db:	PACKETSTORM	id:	112186	Trust: 0.1

sources: IVD: ec100d6a-2353-11e6-abef-000c29c66e3d // CERT/CC: VU#889195 // CNVD: CNVD-2012-2154 // BID: 78199 // JVNDB: JVNDB-2012-002167 // PACKETSTORM: 112186 // CNNVD: CNNVD-201205-011 // CNNVD: CNNVD-201204-542 // NVD: CVE-2012-2441

REFERENCES

url:	http://www.ruggedcom.com/productbulletin/ros-security-page/	Trust: 3.5
url:	http://www.kb.cert.org/vuls/id/889195	Trust: 2.8
url:	http://seclists.org/fulldisclosure/2012/apr/277	Trust: 2.7
url:	http://arstechnica.com/business/news/2012/04/backdoor-in-mission-critical-hardware-threatens-power-traffic-control-systems.ars	Trust: 2.7
url:	http://www.wired.com/threatlevel/2012/04/ruggedcom-backdoor/	Trust: 2.7
url:	http://www.us-cert.gov/control_systems/pdf/ics-alert-12-116-01a.pdf	Trust: 2.7
url:	http://www.us-cert.gov/control_systems/pdf/icsa-12-146-01a.pdf	Trust: 1.6
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/75244	Trust: 1.6
url:	http://www.us-cert.gov/control_systems/pdf/ics-alert-12-116-01.pdf	Trust: 0.8
url:	http://www.ruggedcom.com/products/index.php	Trust: 0.8
url:	http://www.ruggedcom.com/support/software/index.php	Trust: 0.8
url:	http://cwe.mitre.org/data/definitions/261.html	Trust: 0.8
url:	https://www.us-cert.gov/control_systems/pdf/icsa-12-146-01.pdf	Trust: 0.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-2441	Trust: 0.8
url:	http://jvn.jp/cert/jvnvu889195/index.html	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-2441	Trust: 0.8
url:	http://www.kb.cert.org/vuls/id/889195http	Trust: 0.6
url:	http://www.securityfocus.com/bid/53215	Trust: 0.6
url:	https://ca.secunia.com/?page=viewadvisory&vuln_id=48963	Trust: 0.1
url:	http://archives.neohapsis.com/archives/fulldisclosure/2012-04/0276.html	Trust: 0.1
url:	http://secunia.com/psi_30_beta_launch	Trust: 0.1
url:	http://secunia.com/vulnerability_intelligence/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/	Trust: 0.1
url:	http://secunia.com/advisories/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/personal/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://secunia.com/advisories/48963/	Trust: 0.1
url:	http://secunia.com/advisories/48963/#comments	Trust: 0.1
url:	http://secunia.com/advisories/about_secunia_advisories/	Trust: 0.1

sources: CERT/CC: VU#889195 // CNVD: CNVD-2012-2154 // BID: 78199 // JVNDB: JVNDB-2012-002167 // PACKETSTORM: 112186 // CNNVD: CNNVD-201205-011 // CNNVD: CNNVD-201204-542 // NVD: CVE-2012-2441

CREDITS

Trust: 0.6

sources: CNNVD: CNNVD-201205-011

SOURCES

db:	IVD	id:	ec100d6a-2353-11e6-abef-000c29c66e3d
db:	CERT/CC	id:	VU#889195
db:	CNVD	id:	CNVD-2012-2154
db:	BID	id:	78199
db:	JVNDB	id:	JVNDB-2012-002167
db:	PACKETSTORM	id:	112186
db:	CNNVD	id:	CNNVD-201205-011
db:	CNNVD	id:	CNNVD-201204-542
db:	NVD	id:	CVE-2012-2441

LAST UPDATE DATE

2024-11-23T22:49:42.843000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#889195	date:	2012-07-18T00:00:00
db:	CNVD	id:	CNVD-2012-2154	date:	2020-03-10T00:00:00
db:	BID	id:	78199	date:	2012-04-27T00:00:00
db:	JVNDB	id:	JVNDB-2012-002167	date:	2012-05-01T00:00:00
db:	CNNVD	id:	CNNVD-201205-011	date:	2012-05-03T00:00:00
db:	CNNVD	id:	CNNVD-201204-542	date:	2022-02-07T00:00:00
db:	NVD	id:	CVE-2012-2441	date:	2024-11-21T01:39:06.727

SOURCES RELEASE DATE

db:	IVD	id:	ec100d6a-2353-11e6-abef-000c29c66e3d	date:	2012-04-28T00:00:00
db:	CERT/CC	id:	VU#889195	date:	2012-04-24T00:00:00
db:	CNVD	id:	CNVD-2012-2154	date:	2012-04-26T00:00:00
db:	BID	id:	78199	date:	2012-04-27T00:00:00
db:	JVNDB	id:	JVNDB-2012-002167	date:	2012-05-01T00:00:00
db:	PACKETSTORM	id:	112186	date:	2012-04-25T02:37:37
db:	CNNVD	id:	CNNVD-201205-011	date:	2012-04-24T00:00:00
db:	CNNVD	id:	CNNVD-201204-542	date:	2012-04-28T00:00:00
db:	NVD	id:	CVE-2012-2441	date:	2012-04-28T00:55:01.360