GCVE - cpe:2.3:h:intellicom:netbiter_webscada_ws200:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:intellicom:netbiter_webscada_ws200:*:*:*:*:*:*:*:*

part: h version: * update: *

Vendor	Intellicom (`83bf4ab4-81af-50a9-bf2f-de994fbca1ac`)
Product	Netbiter Webscada Ws200 (`b7dab654-3494-5157-943a-bca715ff70d1`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2010-4733`	vulnerable	2026-06-08 04:56:30.551605	Details available WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms have a default username and password, which makes it easier for remote attackers to obtain superadmin access via the web interface, a different vulnerability than CVE-2009-4463. Published: 2011-02-14T23:00:00.000Z Updated: 2024-09-17T01:11:56.479Z Open on db.gcve.eu Reference links http://www.us-cert.gov/control_systems/pdf/ICSA-10-316-01A.pdf http://archives.neohapsis.com/archives/bugtraq/2010-10/0002.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-4732`	vulnerable	2026-06-08 04:56:30.551193	Details available cgi-bin/read.cgi in WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms allows remote authenticated administrators to execute arbitrary code by using a config.html 2.conf action to replace the logo page's GIF image file with a file containing this code, a different vulnerability than CVE-2009-4463. Published: 2011-02-14T23:00:00.000Z Updated: 2024-09-16T17:33:26.149Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/114560 http://www.us-cert.gov/control_systems/pdf/ICSA-10-316-01A.pdf http://archives.neohapsis.com/archives/bugtraq/2010-10/0002.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-4731`	vulnerable	2026-06-08 04:56:30.550718	Details available Absolute path traversal vulnerability in cgi-bin/read.cgi in WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms allows remote authenticated administrators to read arbitrary files via a full pathname in the file parameter, a different vulnerability than CVE-2009-4463. Published: 2011-02-14T23:00:00.000Z Updated: 2024-09-16T16:18:18.165Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/114560 http://www.us-cert.gov/control_systems/pdf/ICSA-10-316-01A.pdf http://archives.neohapsis.com/archives/bugtraq/2010-10/0002.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-4730`	vulnerable	2026-06-08 04:56:30.549054	Details available Directory traversal vulnerability in cgi-bin/read.cgi in WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms allows remote authenticated administrators to read arbitrary files via a .. (dot dot) in the page parameter, a different vulnerability than CVE-2009-4463. Published: 2011-02-14T23:00:00.000Z Updated: 2024-09-16T17:08:09.619Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/114560 http://www.us-cert.gov/control_systems/pdf/ICSA-10-316-01A.pdf http://archives.neohapsis.com/archives/bugtraq/2010-10/0002.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-4463`	vulnerable	2026-06-08 04:51:48.592987	Details available Intellicom NetBiter WebSCADA devices use default passwords for the HICP network configuration service, which makes it easier for remote attackers to modify network settings and cause a denial of service. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation. NOTE: this issue was originally reported to be hard-coded passwords, not default passwords. Published: 2009-12-30T19:00:00.000Z Updated: 2024-08-07T07:01:20.818Z Open on db.gcve.eu Reference links http://www.osvdb.org/61506 http://www.kb.cert.org/vuls/id/902793 http://reversemode.com/index.php?option=com_content&task=view&id=65&Itemid=1 http://support.intellicom.se/getfile.cfm?FID=151 http://www.securityfocus.com/archive/1/508449/100/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-4462`	not_vulnerable	2026-06-08 04:51:48.584914	Details available Stack-based buffer overflow in the NetBiterConfig utility (NetBiterConfig.exe) 1.3.0 for Intellicom NetBiter WebSCADA allows remote attackers to execute arbitrary code via a long hn (hostname) parameter in a crafted HICP-protocol UDP packet. Published: 2009-12-30T19:00:00.000Z Updated: 2024-08-07T07:01:20.712Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/181737 http://www.securityfocus.com/bid/37325 http://www.vupen.com/english/advisories/2009/3542 http://blog.48bits.com/2009/12/12/exposing-hms-hicp-protocol-0day-light/ http://reversemode.com/index.php?option=com_content&task=view&id=65&Itemid=1	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.