Siemens SIMATIC WinCC HMI Web Server Multiple Input Verification Vulnerability
Release date:
Updated on:
Affected Systems:
Siemens SIMATIC WinCC Flexible 2008
Siemens SIMATIC WinCC Flexible 2007
Siemens SIMATIC WinCC Flexible 2005
Siemens SIMATIC WinCC Flexible 2004
Siemens SIMATIC WinCC flexible Runtime
Description:
--------------------------------------------------------------------------------
Bugtraq id: 51836
Cve id: CVE-2011-4512, CVE-2011-4878, CVE-2011-4879
WinCC flexible is a human-machine interface used in some machine or process applications.
Siemens SIMATIC WinCC has the HTTP header injection vulnerability, directory traversal vulnerability, and arbitrary memory read vulnerability. Remote attackers can exploit these vulnerabilities to gain elevated permissions, obtain sensitive information, and cause DoS attacks.
<* Source: ICS-CERT
Link: http://www.us-cert.gov/control_systems/pdf/ICSA-12-030-01.pdf
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Siemens
-------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.automation.siemens.com/mcms/human-machine-interface/en/visualization-software/scada/Pages/Default.aspx