Multiple vulnerabilities found on Schneider Quantum Ethernet module

Multiple vulnerabilities found on Schneider Quantum Ethernet module

iCS-CERTThe Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has reported multiple vulnerabilities on Schneider Electric’s Quantum Ethernet module. The module is primarily used in Schneider Quantum PLCs (programmable controllers), but is also used in Premium PLC, M340 PLC and STB I/O products.

According to the report (ICS-ALERT-11-346-01), independent researcher Rubén Santamarta publicly announced details of the vulnerabilities, and Schneider has produced a fix for two of the reported vulnerabilities and is continuing to develop additional mitigations.

Santamarta found multiple hard-coded credentials in the firmware that enable access to the following services:

  • Telnet port—May allow remote attackers the ability to view the operation of the module’s firmware, cause a denial of service, modify the memory of the module and execute arbitrary code.
     
  • Windriver Debug port—Used for development; may allow remote attackers to view the operation of the module’s firmware, cause a denial of service, modify the memory of the module and execute arbitrary code.
     
  • FTP service—May allow an attacker to modify the module website, download and run custom firmware and modify the http passwords.

ICS-CERT is currently coordinating with Schneider Electric to develop mitigations. Additional information regarding the impact and mitigations will be issued as it becomes available.

Schneider Electric has created a fix for the Telnet and Windriver debug port vulnerabilities for the BMXNOE0100 and 140NOE77101 modules, which will be published on the Schneider website. This fix removes the Telnet and Windriver services from the modules. Organizations need to evaluate the impact of removing these services prior to applying this fix. ICS-CERT will provide additional information as mitigations become available for other identified vulnerabilities.

ICS-CERT recommends that users take defensive measures to minimize the risk of exploitation of these vulnerabilities. These include:

1. Minimize network exposure for all control system devices. Control system devices should not directly face the Internet.

2. Locate control system networks and devices behind firewalls, and isolate them from the business network.

3. If remote access is required, employ secure methods, such as Virtual Private Networks (VPNs), recognizing that VPN is only as secure as the connected devices.

ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to taking defensive measures.

Visit the ICS-CERT website or Schneider Electric for more information.

Did you enjoy this article? Click here to subscribe to Food Engineering Magazine.

You must login or register in order to post a comment.

Multimedia

Videos

Image Galleries

IPPE 2015

The 2015 International Production and Processing Expo (IPPE) was held in Atlanta at the Georgia World Congress Center, Jan. 27-29. More than 30,000 poultry, meat and feed industry representatives attended the event to interact with the 1,288 exhibitors on the show floor that covered more than 490,000 net square feet. At the show exhibitors demonstrated innovations in equipment, supplies and services utilized by firm in the production and processing of meat, poultry, eggs and feed products.

Podcasts

Burns & McDonnell project manager RJ Hope and senior project engineer Justin Hamilton discuss the distinctions between Food Safety and Food Defense as well as the implications for food manufacturers of the Food Safety Modernization Act.
More Podcasts

Food Engineering

Food Engineering March 2015 cover

2015 March

In this March 2015 issue of Food Engineering, we explore how a surprise FDA audit could be serious if you're not recording key data.

Table Of Contents Subscribe

Plant Facility/Site Issues

What issue about your current plant facility/site keeps you up the most at night?
View Results Poll Archive

THE FOOD ENGINEERING STORE

Food-Authentication-Flyer-(.gif
Food Authentication Using Bioorganic Molecules

This text provides critical tools and data needed to augment routine food analysis and enhance food safety by aiding in the detection of counterfeit, and potentially deleterious, foods.

More Products

Clear Seas Research

Clear Seas ResearchWith access to over one million professionals and more than 60 industry-specific publications,Clear Seas Research offers relevant insights from those who know your industry best. Let us customize a market research solution that exceeds your marketing goals.

STAY CONNECTED

FE recent tweets

facebook_40.pngtwitter_40px.pngyoutube_40px.png linkedin_40px.pngGoogle +

Food Master

Food Engineering Food Master 2015Food Master 2015 is now available!

Where the buying process begins in the food and beverage manufacturing market. 

Visit www.foodmaster.com to learn more.