Vulnerabilities > CVE-2016-2296 - 7PK - Security Features vulnerability in Meteocontrol products

047910
CVSS 9.4 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
LOW
network
low complexity
meteocontrol
CWE-254
critical
exploit available
metasploit
NVD
Published: 2016-05-14
Updated: 2017-09-07

Summary

Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited does not require authentication for "post-admin" login pages, which allows remote attackers to obtain sensitive information or modify data via unspecified vectors.

Vulnerable Configurations

Part Description Count
Application
Meteocontrol
4

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionMeteocontrol WEB’log - Admin Password Disclosure. CVE-2016-2296. Webapps exploits for multiple platform
fileexploits/multiple/webapps/39822.rb
idEDB-ID:39822
last seen2016-05-17
modified2016-05-17
platformmultiple
port
published2016-05-17
reporterKarn Ganeshen
sourcehttps://www.exploit-db.com/download/39822/
titleMeteocontrol WEB’log - Admin Password Disclosure
typewebapps

Metasploit

descriptionThis module exploits an authentication bypass vulnerability in Meteocontrol WEBLog appliances (software version < May 2016 release) to extract Administrator password for the device management portal.
idMSF:AUXILIARY/SCANNER/HTTP/METEOCONTROL_WEBLOG_EXTRACTADMIN
last seen2019-12-17
modified2017-07-24
published2017-01-06
references
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/auxiliary/scanner/http/meteocontrol_weblog_extractadmin.rb
titleMeteocontrol WEBlog Password Extractor

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/137099/meteocontrol-extract.rb.txt
idPACKETSTORM:137099
last seen2016-12-05
published2016-05-17
reporterKarn Ganeshen
sourcehttps://packetstormsecurity.com/files/137099/Meteocontrol-WEBLog-Password-Extractor.html
titleMeteocontrol WEBLog Password Extractor

References