ID
VAR-E-201302-0551
CVE
| cve_id: | CVE-2012-4694 | Trust: 0.3 |
| cve_id: | CVE-2012-4712 | Trust: 0.3 |
sources:
BID: 57897
TITLE
MOXA EDR-G903 Unauthorized Access Vulnerability and Insufficient Entropy Weakness
Trust: 0.3
sources:
BID: 57897
DESCRIPTION
MOXA EDR-G903 is prone to an unauthorized access vulnerability and a weakness in the entropy of the generated key.
Successful exploits will allow attackers to gain access to the device and sensitive information. Successful exploits may result in the attacker executing arbitrary commands or gain unauthorized access on the affected system.
Trust: 0.3
sources:
BID: 57897
AFFECTED PRODUCTS
| vendor: | moxa | model: | edr-g903 | scope: | eq | version: | 2.1 | Trust: 0.3 |
| vendor: | moxa | model: | edr-g903 | scope: | ne | version: | 2.11 | Trust: 0.3 |
sources:
BID: 57897
EXPLOIT
An attacker can leverage this issue using readily available network utilities.
Trust: 0.3
sources:
BID: 57897
PRICE
Free
Trust: 0.3
sources:
BID: 57897
TYPE
Design Error
Trust: 0.3
sources:
BID: 57897
CREDITS
Neil Smith
Trust: 0.3
sources:
BID: 57897
EXTERNAL IDS
| db: | ICS CERT | id: | ICSA-13-042-01 | Trust: 0.3 |
| db: | NVD | id: | CVE-2012-4694 | Trust: 0.3 |
| db: | NVD | id: | CVE-2012-4712 | Trust: 0.3 |
| db: | BID | id: | 57897 | Trust: 0.3 |
sources:
BID: 57897
REFERENCES
| url: | http://ics-cert.us-cert.gov/pdf/icsa-13-042-01.pdf | Trust: 0.3 |
| url: | http://www.moxa.com/product/edr-g903.htm | Trust: 0.3 |
sources:
BID: 57897
SOURCES
| db: | BID | id: | 57897 |
LAST UPDATE DATE
2022-07-27T09:58:53.639000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 57897 | date: | 2013-02-11T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 57897 | date: | 2013-02-11T00:00:00 |