Multiple Siemens SIMATIC WinCC Add-On Products Multiple Security Vulnerabilities

Bugtraq ID: 102739
Class: Input Validation Error
CVE: CVE-2017-11496
CVE-2017-11497
CVE-2017-11498
Remote: Yes
Local: No
Published: Jan 18 2018 12:00AM
Updated: Jan 18 2018 12:00AM
Credit: Sergey Temnikov and Vladimir Dashchenko from Kaspersky Lab
Vulnerable: Siemens SIMATIC WinCC Add-On SIPAPER IT MIS 7.0
Siemens SIMATIC WinCC Add-On SICEMENT IT MIS 7.0 and
Siemens SIMATIC WinCC Add-On PM-QUALITY 9.0
Siemens SIMATIC WinCC Add-On PM-OPEN TCP/IP 8.0
Siemens SIMATIC WinCC Add-On PM-OPEN PV02 1.0
Siemens SIMATIC WinCC Add-On PM-OPEN PI 7.0
Siemens SIMATIC WinCC Add-On PM-OPEN IMPORT 6.0
Siemens SIMATIC WinCC Add-On PM-OPEN HOST-S 7.0
Siemens SIMATIC WinCC Add-On PM-OPEN EXPORT 7.0
Siemens SIMATIC WinCC Add-On PM-MAINT 9.0
Siemens SIMATIC WinCC Add-On PM-CONTROL 10.0
Siemens SIMATIC WinCC Add-On PM-ANALYZE 7.0
Siemens SIMATIC WinCC Add-On PM-AGENT 5.0
Siemens SIMATIC WinCC Add-On PI CONNECT AUDIT TRAIL 1.0
Siemens SIMATIC WinCC Add-On PI CONNECT ALARM 2.0
Siemens SIMATIC WinCC Add-On Historian CONNECT ALARM 5.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus