Belden Garrettcom 6K/10K Switches: Auth Bypasses, Memory Corruption

david@systemoverlord.com (David Tomaschik) — Fri, 19 May 2017 00:00:00 +0000

Introduction

Vulnerabilities were identified in the Belden GarrettCom 6K and 10KT (Magnum) series network switches. These were discovered during a black box assessment and therefore the vulnerability list should not be considered exhaustive; observations suggest that it is likely that further vulnerabilities exist. It is strongly recommended that GarrettCom undertake a full whitebox security assessment of these switches.

The version under test was indicated as: 4.6.0. Belden Garrettcom released an advisory on 8 May 2017, indicating that issues were fixed in 4.7.7: https://www.belden.com/hubfs/support/security/bulletins/Belden-GarrettCom-MNS-6K-10K-Security-Bulletin-BSECV-2017-8.pdf?hsLang=en

This is a local copy of an advisory posted to the Full Disclosure mailing list.

Security Issues in Alerton Webtalk (Auth Bypass, RCE)

david@systemoverlord.com (David Tomaschik) — Thu, 27 Apr 2017 00:00:00 +0000

Introduction

Vulnerabilities were identified in the Alerton Webtalk Software supplied by Alerton. This software is used for the management of building automation systems. These were discovered during a black box assessment and therefore the vulnerability list should not be considered exhaustive. Alerton has responded that Webtalk is EOL and past the end of its support period. Customers should move to newer products available from Alerton. Thanks to Alerton for prompt replies in communicating with us about these issues.

Disclosure on System Overlord

Belden Garrettcom 6K/10K Switches: Auth Bypasses, Memory Corruption

Introduction

Security Issues in Alerton Webtalk (Auth Bypass, RCE)

Introduction