Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Honeywell Scada System Information Disclosure

By kannthu

Low
Vidoc logoVidoc Module
#scada#config#exposure#edb
Description

What is the "Honeywell Scada System Information Disclosure?"

The "Honeywell Scada System Information Disclosure" module is designed to detect a specific vulnerability in the Honeywell SCADA system. This vulnerability allows unauthorized access to sensitive information, potentially leading to a breach of confidentiality. The severity of this vulnerability is classified as low.

This module was authored by alperenkesk.

Impact

If exploited, the "Honeywell Scada System Information Disclosure" vulnerability can expose critical system information, such as the DeviceSubClass and IPAddress. This information can be leveraged by attackers to gain a deeper understanding of the target system and potentially launch further attacks.

How does the module work?

The module sends an HTTP GET request to the "/web_caps/webCapsConfig" path of the target system. It then applies matching conditions to determine if the vulnerability is present.

The matching conditions for this module are:

- The response must contain the words "DeviceSubClass" and "IPAddress". - The HTTP status code of the response must be 200.

If both conditions are met, the module will report the vulnerability.

For example, the module's HTTP request may look like this:

GET /web_caps/webCapsConfig

It is important to note that this module is designed to detect the vulnerability, not to fix or mitigate it. Once the vulnerability is detected, appropriate actions should be taken to address the issue and enhance the security of the Honeywell SCADA system.

For more information, you can refer to the reference.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/web_caps/webCapsCon...
Matching conditions
word: DeviceSubClass, IPAddressand
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability