Vulnerabilities > CVE-2014-1697 - Arbitrary Code Execution vulnerability in SIEMENS SIMATIC WinCC Open Architecture
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 65351 CVE(CAN) ID: CVE-2014-1697 Siemens SIMATIC WinCC 是监测控制和数据采集SCADA及人机界面HMI系统。 SIEMENS SIMATIC WinCC OA 3.12 P002之前版本的集成Web服务器在实现上存在安全漏洞,可使远程攻击者向TCP端口4999发送特制的数据包,利用此漏洞执行任意代码。 0 Siemens SIMATIC WinCC Open Architecture < 3.12 P002 January 厂商补丁: Siemens ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.siemens.com/corporate-technology/pool/ http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-342587.pdf |
| id | SSV:61485 |
| last seen | 2017-11-19 |
| modified | 2014-02-20 |
| published | 2014-02-20 |
| reporter | Root |
| title | SIEMENS SIMATIC WinCC Open Architecture任意代码执行漏洞 |
References
- http://ics-cert.us-cert.gov/advisories/ICSA-14-035-01
- http://osvdb.org/102810
- http://secunia.com/advisories/56651
- http://www.securityfocus.com/bid/65351
- http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-342587.pdf
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90933