Vulnerability CVE-2017-6865


Published: 2017-05-11

Description:
A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC Automation Tool (All versions < V3.0), SIMATIC NET PC-Software (All versions < V14 SP1), SIMATIC PCS 7 V8.1 (All versions), SIMATIC PCS 7 V8.2 (All versions < V8.2 SP1), SIMATIC STEP 7 (TIA Portal) V13 (All versions < V13 SP2), SIMATIC STEP 7 (TIA Portal) V14 (All versions < V14 SP1), SIMATIC STEP 7 V5.X (All versions < V5.6), SIMATIC WinAC RTX 2010 SP2 (All versions), SIMATIC WinAC RTX F 2010 SP2 (All versions), SIMATIC WinCC (TIA Portal) V13 (All versions < V13 SP2), SIMATIC WinCC (TIA Portal) V14 (All versions < V14 SP1), SIMATIC WinCC V7.2 and prior (All versions), SIMATIC WinCC V7.3 (All versions < V7.3 Update 15), SIMATIC WinCC V7.4 (All versions < V7.4 SP1 Upd1), SIMATIC WinCC flexible 2008 (All versions < flexible 2008 SP5), SINAUT ST7CC (All versions installed in conjunction with SIMATIC WinCC < V7.3 Update 15), SINEMA Server (All versions < V14), SINUMERIK 808D Programming Tool (All versions < V4.7 SP4 HF2), SMART PC Access (All versions < V2.3), STEP 7 - Micro/WIN SMART (All versions < V2.3), Security Configuration Tool (SCT) (All versions < V5.0). Specially crafted PROFINET DCP broadcast packets sent to the affected products on a local Ethernet segment (Layer 2) could cause a Denial-of-Service condition of some services. The services require manual restart to recover.

Type:

CWE-20

(Improper Input Validation)

CVSS2 => (AV:A/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.1/10
6.9/10
6.5/10
Exploit range
Attack complexity
Authentication
Adjacent network
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete
Affected software
Siemens -> Simatic wincc flexible 2008 
Siemens -> Simatic automation tool 
Siemens -> Simatic winac rtx f 2010 
Siemens -> Simatic net pc-software 
Siemens -> Sinaut st7cc 
Siemens -> Pcs 7 
Siemens -> Smart pc access 
Siemens -> Sinema server 
Siemens -> Simatic winac rtx 2010 
Siemens -> Simatic wincc (tia portal) 
Siemens -> Simatic step 7 micro/win smart 
Siemens -> Simatic step 7 (tia portal) 
Siemens -> Sinumerik 808d programming tool 
Siemens -> Security configuration tool 
Siemens -> Simatic wincc 
Siemens -> Primary setup tool 

 References:
https://cert-portal.siemens.com/productcert/pdf/ssa-275839.pdf
https://www.securityfocus.com/bid/98366

Copyright 2024, cxsecurity.com

 

Back to Top