Дата обнаружения
|
24/01/2012 |
Уровень угрозы
|
Critical |
Описание
|
Multiple critical vulnerabilities have been found in Siemens products. Malicious users can exploit these vulnerabilities to read & modify arbitrary files, cause denial of service, execute arbitrary code, bypass authentication, obtain access and inject arbitrary HTTP headers. Below is a complete list of vulnerabilities
|
Пораженные продукты
|
Siemens WinCC flexible versions 2004, 2005, 2007 and 2008 earlier than SP 3 |
Решение
|
Update to latest version |
Первичный источник обнаружения
|
Siemens bulletin |
Оказываемое влияние
?
|
ACE
[?]
DoS
[?]
CI
[?]
SB
[?]
WLF
[?]
RLF
[?]
|
Связанные продукты
|
WinCC flexible Simatic HMI Panels |
CVE-IDS
|
CVE-2011-48787.8Critical CVE-2011-48759.3Critical CVE-2011-48777.1High CVE-2011-48769.3Critical CVE-2011-45089.3Critical CVE-2011-48798.5Critical CVE-2011-45104.3Warning CVE-2011-45114.3Warning CVE-2011-45125.0Critical |
Эксплуатация
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/18166 https://www.exploit-db.com/exploits/18166 https://www.exploit-db.com/exploits/18166 |
Узнай статистику распространения уязвимостей в твоем регионе |