Vigil@nce - SIMATIC WinCC: multiple vulnerabilities
August 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of SIMATIC WinCC.
Impacted products: SIMATIC
Severity: 2/4
Creation date: 24/07/2014
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in SIMATIC WinCC.
An attacker can send specially crafted HTTP requests to
WebNavigator, in order to obtain sensitive information.
[severity:2/4; CVE-2014-4682]
An attacker can bypass the access control rules of WebNavigator,
in order to escalate his privileges. [severity:2/4; CVE-2014-4683]
An attacker can send specially crafted commands to the database
server, in order to escalate his privileges. [severity:2/4;
CVE-2014-4684]
An attacker can make profit of misconfigured permissions of system
objects, in order to escalate his privileges. [severity:2/4;
CVE-2014-4685]
An attacker can use an encryption key hard coded in an
administration application, in order to escalate his privileges.
[severity:2/4; CVE-2014-4686]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/SIMATIC-WinCC-multiple-vulnerabilities-15097