SCADA Vulnerabilities & Exposures (SVE)

CRITIFENCE® SCADA Vulnerabilities and Exposures Database (SVE)

[SVE-399586013] JanTek JTC-200

Date Type Platform Author EDB-ID CVE-ID OSVDB-ID Download App SIS Signature
2017-10-10OtherJanTekKarn Ganeshan reported the vulnerabilities to ICS-CERT. N/ACVE-2016-5789 CVE-2016-5791 N/AN/AN/A

Source

						
							
								
#
# JanTek JTC-200
#


### VULNERABLE VENDOR
JanTek


### VULNERABLE PRODUCT
JTC-200



### RESEARCHER
Karn Ganeshan reported the vulnerabilities to ICS-CERT.



### AFFECTED PRODUCTS

The following versions of JTC-200, a TCP/IP converter, are affected:

JTC-200 all versions.



### IMPACT

Successful exploitation of these vulnerabilities could allow for remote code execution on the device with elevated privileges.



### VULNERABILITY OVERVIEW

CROSS-SITE REQUEST FORGERY (CSRF) CWE-352
An attacker could perform actions with the same permissions as a victim user, provided the victim has an active session and is induced to trigger the malicious request.
CVE-2016-5789 has been assigned to this vulnerability.
A CVSS v3 base score of 8.0 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H)


IMPROPER AUTHENTICATION CWE-287
The improper authentication could provide undocumented Busybox Linux shell accessible over Telnet service without any authentication.
CVE-2016-5791 has been assigned to this vulnerability.
A CVSS v3 base score of 9.8 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)





### BACKGROUND

Critical Infrastructure Sectors: Critical Manufacturing
Countries/Areas Deployed: Europe and Asia
Company Headquarters Location: Taiwan




### MITIGATION

JanTek will not be developing mitigations for the vulnerabilities affecting JTC-200. JanTek will be developing a JTC-300 model scheduled for release near the end of 2017.