CVE-2015-0984 SCADA – Gaining remote shell on Honeywell Falcon XLWEB

Posted by Martin Jartelius on Apr 22

SCADA – EXPLOITING CVE-2015-0984 FOR SHELL ACCESS

This post is a follow up detailing how to achieve control of the actual
XLWEB SCADA controller. The vulnerability is assigned with reference
CVE-2015-0984.

Rather than the application level administrative access as discussed in
the email regarding CVE-2014-2717, this focuses on issues with the FTP,
default accounts which could not be changed, and high privileges of the
web server user resulting…

Leave a Reply