Siemens SIMATIC WinCC And PCS 7 Multiple Security Vulnerabilities

Bugtraq ID:	58545
Class:	Unknown
CVE:	CVE-2013-0674 CVE-2013-0675 CVE-2013-0676 CVE-2013-0677 CVE-2013-0678 CVE-2013-0679
Remote:	Yes
Local:	No
Published:	Mar 15 2013 12:00AM
Updated:	Apr 02 2013 03:37PM
Credit:	Vendor, Gleb Gritsai and Sergey Gordeychik from Positive Technologies
Vulnerable:
Not Vulnerable:

Siemens SIMATIC WinCC And PCS 7 Multiple Security Vulnerabilities

Siemens SIMATIC WinCC And PCS 7 are prone to the following security vulnerabilities:

1. Multiple information-disclosure vulnerabilities
2. A directory-traversal vulnerability
3. Multiple buffer-overflow vulnerabilities

An attacker can exploit these issues to gain access to sensitive information, arbitrary system files, and execute arbitrary code in the context of the application (typically Internet Explorer) that uses the ActiveX control. Failed exploit attempts will result in a denial-of-service conditions.

Versions prior to Siemens SIMATIC WinCC 7.2 and Siemens SIMATIC PCS 7 8.0 SP1 are vulnerable.

Siemens SIMATIC WinCC And PCS 7 Multiple Security Vulnerabilities

Attackers can exploit these issues through a browser.

Siemens SIMATIC WinCC And PCS 7 Multiple Security Vulnerabilities

Solution:
Updates are available. Please see the references or vendor advisory for more information.