SB2014121901 - Two vulnerabilities in Siemens SIMATIC WinCC

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2014121901

SB2014121901 - Two vulnerabilities in Siemens SIMATIC WinCC

Published: December 19, 2014

Security Bulletin ID SB2014121901
Severity
Critical
Patch available
YES
Number of vulnerabilities 2
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Critical 50% Medium 50%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.


1) Improper input validation (CVE-ID: CVE-2014-8551)

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to improper input validation when processing packets sent to the WinCC server. A remote unauthenticated attacker can send a specially crafted packet and execute arbitrary code on the target system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Note: this vulnerability has been exploited in targeted attacks.


2) Information disclosure (CVE-ID: CVE-2014-8552)

The vulnerability allows a remote attacker to view arbitrary files on the system.

The vulnerability exists due to improper input validation when processing packets sent to the WinCC server. A remote unauthenticated attacker can send a specially crafted packet and view contents of arbitrary files on the target system.

Successful exploitation of the vulnerability may allow an attacker to gain access to potentially sensitive information.


Remediation

Install update from vendor's website.

References