Main Vulnerability Database SB2018053108

SB2018053108 - Security restrictions bypass in mySCADA myPRO

Published: May 31, 2018

Security Bulletin ID SB2018053108

Severity

Low

Patch available

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Use of hard-coded credentials (CVE-ID: CVE-2018-11311)

The vulnerability allows a remote attacker to bypass security restrictions on the target system.

The weakness exists due to use of a hardcoded FTP username of myscada and password of Vikuk63 in 'myscadagate.exe'. A remote attacker can use these credentials, connect to an FTP server on port 2121 with an authorized account, bypass security restrictions and upload or download files onto the server running myPRO software.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

https://emreovunc.com/blog/en/mySCADA-myPRO7-Exploit.pdf
https://github.com/EmreOvunc/mySCADA-myPRO-7-Hardcoded-FTP-Username-and-Password