SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Schneider Electric Modicon M580 UMAS Information Disclosure 1

Category: SCADA-ATTACKS      

An exploitable information disclosure vulnerability exists in the UMAS read memory block function of the Schneider Electric Modicon M580 programmable automation controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to return blocks of memory, resulting in the disclosure of plaintext read, write and trap SNMP community strings. An attacker can send unauthenticated commands to trigger this vulnerability.


Relevant Information