DSecRG Supports Project BaseCamp by Releasing WAGO PLC 0-day Vulnerabilities
One of the key events in SCADA and PLC security – the S4ICS Symposium – took place in Miami on January 18th and 19th.
Aside from several reports and SCADA security trainings, the results of a colossal project dedicated to research of vulnerabilities in industrial controllers, was presented at the symposium.
The project was named Project Basecamp. The following industrial controllers were examined:
- General Electric D20ME
- Koyo/Direct LOGIC H4-ES
- Rockwell Automation/Allen-Bradley ControlLogix
- Rockwell Automation/Allen-Bradley MicroLogix
- Schneider Electric Modicon Quantum
- Schweitzer SEL-2032 (a communication module for relays)
The DSecRG (ERPScan subdivision) researchers decided to support the project by releasing their independent research, and added the 750 series WAGO controller to the list.
They have also published a variety of 0-day vulnerabilities for this controller and for the SCADA systems of wellintech KingSCADA and OPC Systems.NET, to draw the public attention to this problem once more.
The following links lead to the details about found vulnerabilities:
- http://dsecrg.com/pages/vul/show.php?id=401
- http://dsecrg.com/pages/vul/show.php?id=402
- http://dsecrg.com/pages/vul/show.php?id=403
- http://dsecrg.com/pages/vul/show.php?id=404
- http://dsecrg.com/pages/vul/show.php?id=405
- http://dsecrg.com/pages/vul/show.php?id=406
- http://dsecrg.com/pages/vul/show.php?id=407
The results of the Project BaseCamp research are available here:
