CVE-2015-1010 Information

Description

Rockwell Automation RSView32 7.60.00 (aka CPR9 SR4) and earlier does not properly encrypt credentials which allows local users to obtain sensitive information by reading a file and conducting a decryption attack.

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-15-132-02 https://rockwellautomation.custhelp.com/app/answers/detail/a_id/700915