Main Vulnerability Database SB2021031005

SB2021031005 - Out-of-bounds Read in Siemens SCALANCE and SIMATIC NET CM 1542-1

Published: March 10, 2021

Security Bulletin ID SB2021031005

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Information disclosure

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Heap out-of-bounds read (CVE-ID: CVE-2019-3823)

The vulnerability allows a remote attacker to gain access to potentially sensitive information or cause the service to crash.

The vulnerability exists due to a heap out-of-bounds read in the code handling the end-of-response for SMTP. If the buffer passed to `smtp_endofresp()` isn't NUL terminated and contains no character ending the parsed number, and `len` is set to 5, then the `strtol()` call reads beyond the allocated buffer. A remote attacker can trigger heap out-of-bounds read error and read contents of memory on the system or cause the service to crash..

Remediation

Install update from vendor's website.

References

https://ics-cert.us-cert.gov/advisories/icsa-21-068-10</p><p><br></p>