Siemens SIMATIC WinCC HMI Web Server Multiple Input Validation Vulnerabilities
BID:51836
Info
Siemens SIMATIC WinCC HMI Web Server Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 51836 |
| Class: | Input Validation Error |
| CVE: |
CVE-2011-4512 CVE-2011-4878 CVE-2011-4879 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 02 2012 12:00AM |
| Updated: | Apr 18 2012 09:20PM |
| Credit: | ICS-CERT |
| Vulnerable: |
Siemens SIMATIC WinCC flexible Runtime 0 Siemens SIMATIC WinCC Flexible 2008 Siemens SIMATIC WinCC Flexible 2007 Siemens SIMATIC WinCC Flexible 2005 Siemens SIMATIC WinCC Flexible 2004 Siemens SIMATIC WinCC (TIA Portal) Runtime Advanced 0 Siemens SIMATIC WinCC V11 Siemens SIMATIC WinCC 0 Siemens SIMATIC HMI Panels 0 |
| Not Vulnerable: | |
Discussion
Siemens SIMATIC WinCC HMI Web Server Multiple Input Validation Vulnerabilities
Siemens SIMATIC WinCC is prone to an HTTP-header-injection issue, a directory-traversal issue, and an arbitrary memory-read access issue because the application fails to properly sanitize user-supplied input.
A remote attacker can exploit these issues to gain elevated privileges, obtain sensitive information, or cause denial-of-service conditions.
Siemens SIMATIC WinCC is prone to an HTTP-header-injection issue, a directory-traversal issue, and an arbitrary memory-read access issue because the application fails to properly sanitize user-supplied input.
A remote attacker can exploit these issues to gain elevated privileges, obtain sensitive information, or cause denial-of-service conditions.
Exploit / POC
Siemens SIMATIC WinCC HMI Web Server Multiple Input Validation Vulnerabilities
Attackers can use a browser to exploit these issues.
Attackers can use a browser to exploit these issues.
Solution / Fix
Siemens SIMATIC WinCC HMI Web Server Multiple Input Validation Vulnerabilities
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.