API tools faq
paste
Advertisement
Guest User

SMA Solar Sunny WebBox Default Credentials weak authenticati

a guest
Sep 16th, 2015
1,494
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.33 KB | None | 0 0
raw download clone embed print report
  1. CVE: CVE-2015-3964
  2. ICSA-15-181-02
  3.  
  4. SMA Solar Sunny WebBox has hardcoded passwords, which makes it easier for remote attackers to obtain access via unspecified vectors.
  5.  
  6. AFFECTED PRODUCTS
  7.  
  8. The following Sunny WebBox versions are affected:
  9.  
  10. Sunny WebBox – All versions.
  11.  
  12. IMPACT
  13.  
  14. A remote attacker could exploit this vulnerability to gain full access to the system.
  15.  
  16. Impact to individual organizations depends on many factors that are unique to each organization. ICS-CERT recommends that organizations evaluate the impact of this vulnerability based on their operational environment, architecture, and product implementation.
  17. BACKGROUND
  18.  
  19. SMA Solar Technology AG is a German solar energy equipment supplier.
  20.  
  21. The affected product, Sunny WebBox, is used for remote monitoring and maintenance of medium-sized photovoltaic plants. According to SMA, Sunny WebBox devices are deployed in the Energy sector. SMA estimates that this product is used worldwide.
  22.  
  23.  
  24. VULNERABILITY CHARACTERIZATION
  25. VULNERABILITY OVERVIEW
  26. USE OF HARD-CODED CREDENTIALSa
  27.  
  28. Sunny WebBox can be accessed using hard-coded passwords that cannot be changed or disabled by a user.
  29.  
  30. CVE-2015-3964b has been assigned to this vulnerability. A CVSS v2 base score of 10.0 has been assigned; the CVSS vector string is (AV:N/AC:L/Au:N/C:C/I:C/A:C).c
  31. VULNERABILITY DETAILS
  32. EXPLOITABILITY
  33.  
  34. This vulnerability could be(will be) exploited remotely.
  35. EXISTENCE OF EXPLOIT ++++ TRY SWBwfri2004! ++++
  36.  
  37. No known public exploits specifically target this vulnerability.
  38. DIFFICULTY
  39.  
  40. An attacker with a low skill would be able to exploit this vulnerability.
  41. MITIGATION
  42.  
  43. SMA Solar Technology AG has sent out security recommendations via its Sunny Portal Online Platform to WebBox users. It recommends using port-forwarding or a VPN to access these devices remotely. Please refer to the Sunny Portal Online Platform or contact SMA customer service for more information:
  44.  
  45. Phone: 1-888-4SMAUSA
  46. Email: [email protected] (link sends e-mail)
  47. Web: www.SMA-America.com (link is external)
  48.  
  49. ICS-CERT recommends that users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should remove and replace this system.
  50.  
  51. ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!