CVE-2013-0693

Loading...

General

Score:10.0/10.0
Severity:High
Category:Information Leak / Disclosure

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 03/10/13 - Updated on 03/10/13

Description

The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier performs network-beacon broadcasts, which allows remote attackers to obtain potentially sensitive information about device presence by listening for broadcast traffic.

Category: Information Leak / Disclosure

CWE-200 (Information Exposure)
An information exposure is the intentional or unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information.

Security Notices

US National Vulnerability DatabaseCVE-2013-0693

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
emersondl_8000_remote_terminal_unit
emersonroc_800l_remote_terminal_unit
emersonroc_800_remote_terminal_unit
eneaose

Share this vulnerability with:

Twitter Facebook LinkedIn Mail