Vulnerabilities > CVE-2013-0664 - Unspecified vulnerability in Schneider-Electric Modicon M340, Modicon Premium and Modicon Quantum PLC

CVSS 8.5 - HIGH

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

SINGLE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

schneider-electric

NVD

Published: 2013-04-04

Updated: 2013-04-04

Summary

The FactoryCast service on the Schneider Electric Quantum 140NOE77111 and 140NWM10000, M340 BMXNOE0110x, and Premium TSXETY5103 PLC modules allows remote authenticated users to send Modbus messages, and consequently execute arbitrary code, by embedding these messages in SOAP HTTP POST requests.

Vulnerable Configurations

Part	Description	Count
Hardware	Schneider-Electric Schneider Electric Modicon Quantum PLC 140Noe77111 Schneider Electric Modicon Quantum PLC 140Nwm10000 Schneider Electric Modicon M340 Bmxnoe0110X Schneider Electric Modicon Premium Tsxety5103	4

References

http://ics-cert.us-cert.gov/pdf/ICSA-13-077-01A.pdf
http://www.schneider-electric.com/download/ww/en/details/35081317-Vulnerability-Disclosure-for-Quantum-Premium-and-M340/
http://www.schneider-electric.com/download/ww/en/file/36555639-SEVD-2013-023-01.pdf/?fileName=SEVD-2013-023-01.pdf&reference=SEVD-2013-023-01&docType=Technical-paper