CVE-2012-1803

CVE Database · CVE-2012-1803

CVE-2012-1803

· N/AModified

CVSS v3.1

N/A

EPSS

49.11%

Published

Apr 27, 2012

Modified

Apr 28, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBRuggedCom Devices - Backdoor Access TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

RuggedCom Rugged Operating System (ROS) 3.10.x and earlier has a factory account with a password derived from the MAC Address field in the banner, which makes it easier for remote attackers to obtain access by performing a calculation on this address value, and then establishing a (1) TELNET, (2) remote shell (aka rsh), or (3) serial-console session.

Weaknesses (CWE)

CWE-310

Affected Products (1)

siemens · ruggedcom_rugged_operating_systemvulnerable

References (20)

http://archives.neohapsis.com/archives/bugtraq/2012-04/0186.html

Broken Link

http://arstechnica.com/business/news/2012/04/backdoor-in-mission-critical-hardware-threatens-power-traffic-control-systems.ars

Third Party Advisory

http://ics-cert.us-cert.gov/advisories/ICSA-12-146-01A

Third Party AdvisoryUS Government Resource

http://seclists.org/fulldisclosure/2012/Apr/277

ExploitMailing ListThird Party Advisory

http://www.exploit-db.com/exploits/18779

ExploitThird Party AdvisoryVDB Entry

KEV Catalog EPSS Scores Vendors All CVEs