cnvd-2017-36884
Vulnerability from cnvd

Title: 多款Siemens产品拒绝服务漏洞

Description:

Siemens SIMATIC S7-200 Smart等都是德国西门子(Siemens)公司的产品。Siemens SIMATIC S7-200 Smart是一款应用于中小型自动化系统中的可编程逻辑控制器(PLC)。SIMATIC WinAC RTX 2010 incl是一套用于自动化解决方案的软件控制器。

多款Siemens产品中存在拒绝服务漏洞。远程攻击者可通过向161/udp端口发送特制的数据包利用该漏洞造成拒绝服务。

Severity:

Patch Name: 多款Siemens产品拒绝服务漏洞的补丁

Patch Description:

Siemens SIMATIC S7-200 Smart等都是德国西门子(Siemens)公司的产品。Siemens SIMATIC S7-200 Smart是一款应用于中小型自动化系统中的可编程逻辑控制器(PLC)。SIMATIC WinAC RTX 2010 incl是一套用于自动化解决方案的软件控制器。

多款Siemens产品中存在拒绝服务漏洞。远程攻击者可通过向161/udp端口发送特制的数据包利用该漏洞造成拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-346262.pdf

Reference: http://www.securityfocus.com/bid/101964 https://ics-cert.us-cert.gov/advisories/ICSA-17-339-01

Impacted products
Name
['Siemens SIMATIC S7-200 Smart <V2.03.01', 'Siemens SIMATIC S7-400 PN V6 <V6.0.6', 'Siemens SIMATIC S7-400 H V6', 'Siemens SIMATIC S7-400 PN/DP V7', 'Siemens SIMATIC S7-410 V8', 'Siemens SIMATIC S7-300', 'Siemens SIMATIC S7-1200', 'Siemens SIMATIC S7-1500', 'Siemens SIMATIC S7-1500 Software Controller', 'Siemens SIMATIC WinAC RTX 2010 incl.F', 'Siemens SIMATIC ET 200AL', 'Siemens SIMATIC ET 200ecoPN', 'Siemens SIMATIC ET 200M', 'Siemens SIMATIC ET 200MP', 'Siemens SIMATIC ET 200pro', 'Siemens SIMATIC ET 200S', 'Siemens EK-ERTEC 200 PN IO', 'Siemens SIMOTION D <V5.1 HF1', 'Siemens SIMOTION C <V5.1 HF1', 'Siemens SIMOTION P <V5.1 HF1', 'Siemens SINAMICS DCM', 'Siemens SINAMICS DCP', 'Siemens SINAMICS G110M/G120(C/P/D) w.PN <V4.7 SP9 HF1', 'Siemens SIMATIC ET 200SP', 'Siemens DK Standard Ethernet Controller', 'Siemens EK-ERTEC 200P <V4.5', 'Siemens SINAMICS S110 w.PN', 'Siemens SINAMICS S120', 'Siemens SINAMICS S150 V4.7', 'Siemens SINAMICS S150 V4.8', 'Siemens SINAMICS V90 w.PN', 'Siemens SINUMERIK 840D sl', 'Siemens SIMATIC Compact Field Unit', 'Siemens SIMATIC PN/PN Coupler', 'Siemens SIMOCODE pro V PROFINET', 'Siemens SIRIUS Soft starter 3RW44 PN', 'Siemens SINAMICS G130 and G150']
Show details on source website

To clipboard 

{
  "bids": {
    "bid": {
      "bidNumber": "101964"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-12741"
    }
  },
  "description": "Siemens SIMATIC S7-200 Smart\u7b49\u90fd\u662f\u5fb7\u56fd\u897f\u95e8\u5b50\uff08Siemens\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Siemens SIMATIC S7-200 Smart\u662f\u4e00\u6b3e\u5e94\u7528\u4e8e\u4e2d\u5c0f\u578b\u81ea\u52a8\u5316\u7cfb\u7edf\u4e2d\u7684\u53ef\u7f16\u7a0b\u903b\u8f91\u63a7\u5236\u5668\uff08PLC\uff09\u3002SIMATIC WinAC RTX 2010 incl\u662f\u4e00\u5957\u7528\u4e8e\u81ea\u52a8\u5316\u89e3\u51b3\u65b9\u6848\u7684\u8f6f\u4ef6\u63a7\u5236\u5668\u3002\r\n\r\n\u591a\u6b3eSiemens\u4ea7\u54c1\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411161/udp\u7aef\u53e3\u53d1\u9001\u7279\u5236\u7684\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "George Lashenko, Security researcher at CyberX",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-346262.pdf",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-36884",
  "openTime": "2017-12-12",
  "patchDescription": "Siemens SIMATIC S7-200 Smart\u7b49\u90fd\u662f\u5fb7\u56fd\u897f\u95e8\u5b50\uff08Siemens\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Siemens SIMATIC S7-200 Smart\u662f\u4e00\u6b3e\u5e94\u7528\u4e8e\u4e2d\u5c0f\u578b\u81ea\u52a8\u5316\u7cfb\u7edf\u4e2d\u7684\u53ef\u7f16\u7a0b\u903b\u8f91\u63a7\u5236\u5668\uff08PLC\uff09\u3002SIMATIC WinAC RTX 2010 incl\u662f\u4e00\u5957\u7528\u4e8e\u81ea\u52a8\u5316\u89e3\u51b3\u65b9\u6848\u7684\u8f6f\u4ef6\u63a7\u5236\u5668\u3002\r\n\r\n\u591a\u6b3eSiemens\u4ea7\u54c1\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411161/udp\u7aef\u53e3\u53d1\u9001\u7279\u5236\u7684\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3eSiemens\u4ea7\u54c1\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Siemens SIMATIC S7-200 Smart \u003cV2.03.01",
      "Siemens SIMATIC S7-400 PN V6 \u003cV6.0.6",
      "Siemens SIMATIC S7-400 H V6",
      "Siemens SIMATIC S7-400 PN/DP V7",
      "Siemens SIMATIC S7-410 V8",
      "Siemens SIMATIC S7-300",
      "Siemens SIMATIC S7-1200",
      "Siemens SIMATIC S7-1500",
      "Siemens SIMATIC S7-1500 Software Controller",
      "Siemens SIMATIC WinAC RTX 2010 incl.F",
      "Siemens SIMATIC ET 200AL",
      "Siemens SIMATIC ET 200ecoPN",
      "Siemens SIMATIC ET 200M",
      "Siemens SIMATIC ET 200MP",
      "Siemens SIMATIC ET 200pro",
      "Siemens SIMATIC ET 200S",
      "Siemens EK-ERTEC 200 PN IO",
      "Siemens SIMOTION D \u003cV5.1 HF1",
      "Siemens SIMOTION C \u003cV5.1 HF1",
      "Siemens SIMOTION P \u003cV5.1 HF1",
      "Siemens SINAMICS DCM",
      "Siemens SINAMICS DCP",
      "Siemens SINAMICS G110M/G120(C/P/D) w.PN \u003cV4.7 SP9 HF1",
      "Siemens SIMATIC ET 200SP",
      "Siemens DK Standard Ethernet Controller",
      "Siemens EK-ERTEC 200P \u003cV4.5",
      "Siemens SINAMICS S110 w.PN",
      "Siemens SINAMICS S120",
      "Siemens SINAMICS S150 V4.7",
      "Siemens SINAMICS S150 V4.8",
      "Siemens SINAMICS V90 w.PN",
      "Siemens SINUMERIK 840D sl",
      "Siemens SIMATIC Compact Field Unit",
      "Siemens SIMATIC PN/PN Coupler",
      "Siemens SIMOCODE pro V PROFINET",
      "Siemens SIRIUS Soft starter 3RW44 PN",
      "Siemens SINAMICS G130 and G150"
    ]
  },
  "referenceLink": "http://www.securityfocus.com/bid/101964\r\nhttps://ics-cert.us-cert.gov/advisories/ICSA-17-339-01",
  "serverity": "\u9ad8",
  "submitTime": "2017-11-29",
  "title": "\u591a\u6b3eSiemens\u4ea7\u54c1\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.