CVEs-PoC/2010/CVE-2010-2772.md

### [CVE-2010-2772](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2772)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows local users to access a back-end database and gain privileges, as demonstrated in the wild in July 2010 by the Stuxnet worm, a different vulnerability than CVE-2010-2568.

### POC

#### Reference
- http://infoworld.com/d/security-central/new-weaponized-virus-targets-industrial-secrets-725
- http://www.wired.com/threatlevel/2010/07/siemens-scada/

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ic3sw0rd/S7_plus_Crash
- https://github.com/rodrigosilvaluz/STUXNET_DEEP_DIVE
- https://github.com/s3mPr1linux/STUXNET_DEEP_DIVE
- https://github.com/uraninite/stuxnet
- https://github.com/uraninite/win32-stuxnet