|
|
|||
| Rule General Information |
|---|
| Release Date: | 2021-03-26 | |
| Rule Name: | Siemens SIMATIC WinCC Flexible Runtime Stack Buffer Overflow Vulnerability (CVE-2011-4875) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Siemens SIMATIC WinCC Flexible is an engineering software platform that integrates SIMATIC STEP 7, SIMATIC WinCC and SINAMICS StartDrive. A stack-based buffer overflow vulnerability exists in HmiLoad in the Runtime loader in versions earlier than SIMATIC WinCC flexible Runtime 2008 SP2 update 13. This vulnerability is caused when the Transfer Mode is enabled. A remote attacker could exploit this vulnerability to execute arbitrary code with vectors associated with Unicode strings. These editions include: Siemens WinCC flexible Version 2004, 2005, 2007, 2008, WinCC V11 (also known as TIA portal), TP, OP, MP, Comfort Panels and Mobile Panels SIMATIC HMI panels, WinCC V11 Runtime Advanced, and WinCC flexible Runtime. | |
| Impact: | A buffer overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks includes arbitrary code execution and denial of service. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | http://www.us-cert.gov/control_systems/pdf/ICSA-12-030-01.pdf http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-345442.pdf http://aluigi.altervista.org/adv/winccflex_1-adv.txt |
|
| Solutions |
|---|
| Refer to the announcement or patch by the vendor: http://aluigi.altervista.org/adv/winccflex_1-adv.txt |