CVE-2017-9664: Path Traversal
First published: Thu May 24 2018(Updated: )
In ABB SREA-01 revisions A, B, C: application versions up to 3.31.5, and SREA-50 revision A: application versions up to 3.32.8, an attacker may access internal files of ABB SREA-01 and SREA-50 legacy remote monitoring tools without any authorization over the network using a HTTP request which refers to files using ../../ relative paths. Once the internal password file is retrieved, the password hash can be identified using a brute force attack. There is also an exploit allowing running of commands after authorization.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Abb Srea-50 Firmware | <=3.32.8 | |
| Abb Srea-50 | ||
| Abb Srea-01 Firmware | <=3.31.5 | |
| ABB SREA-01 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/weakness
- agent/type
- agent/event
- agent/severity
- agent/author
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/abb
- canonical/abb srea-50 firmware
- version/abb srea-50 firmware/3.32.8
- canonical/abb srea-50
- canonical/abb srea-01 firmware
- version/abb srea-01 firmware/3.31.5
- canonical/abb srea-01