Details of VAR-201303-0261

ID

VAR-201303-0261

CVE

CVE-2013-0679

TITLE

Siemens SIMATIC WinCC And PCS 7 Multiple Security Vulnerabilities

Trust: 0.9

sources: BID: 58545 // CNNVD: CNNVD-201303-363

DESCRIPTION

Directory traversal vulnerability in the web server in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote authenticated users to read arbitrary files via vectors involving a query for a pathname. Siemens SIMATIC WinCC is a monitoring control and data acquisition SCADA and human machine interface HMI system. Siemens SIMATIC PCS is a process control system. Siemens SIMATIC WinCC 7.2, Siemens SIMATIC PCS 7 8.0 SP1 versions have information disclosure, directory traversal, buffer overflow security vulnerabilities, which can be exploited by attackers to obtain sensitive information, any system files, and execute arbitrary applications in the context of applications using ActiveX controls. Code. Multiple information-disclosure vulnerabilities 2. A directory-traversal vulnerability 3. Failed exploit attempts will result in a denial-of-service conditions

Trust: 2.7

sources: NVD: CVE-2013-0679 // JVNDB: JVNDB-2013-001991 // CNVD: CNVD-2013-02175 // BID: 58545 // IVD: 090c28be-2353-11e6-abef-000c29c66e3d // VULHUB: VHN-60681

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 090c28be-2353-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-02175

AFFECTED PRODUCTS

vendor:	siemens	model:	wincc	scope:	eq	version:	6.0	Trust: 1.6
vendor:	siemens	model:	wincc	scope:	eq	version:	5.0	Trust: 1.6
vendor:	siemens	model:	wincc	scope:	eq	version:	7.0	Trust: 1.6
vendor:	siemens	model:	simatic wincc	scope:	lt	version:	7.2	Trust: 1.4
vendor:	siemens	model:	simatic pcs7	scope:	eq	version:	7.1	Trust: 1.0
vendor:	siemens	model:	simatic pcs7	scope:	lte	version:	8.0	Trust: 1.0
vendor:	siemens	model:	wincc	scope:	lte	version:	7.1	Trust: 1.0
vendor:	wincc	model:	-	scope:	eq	version:	6.0	Trust: 0.8
vendor:	wincc	model:	-	scope:	eq	version:	7.0	Trust: 0.8
vendor:	siemens	model:	simatic pcs 7	scope:	lt	version:	8.0 sp1	Trust: 0.8
vendor:	siemens	model:	simatic pcs sp1	scope:	eq	version:	7<8.0	Trust: 0.6
vendor:	siemens	model:	wincc	scope:	eq	version:	7.1	Trust: 0.6
vendor:	wincc	model:	-	scope:	eq	version:	5.0	Trust: 0.4
vendor:	simatic pcs7	model:	-	scope:	eq	version:	7.1	Trust: 0.2
vendor:	simatic pcs7	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	wincc	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 090c28be-2353-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-02175 // JVNDB: JVNDB-2013-001991 // CNNVD: CNNVD-201303-447 // NVD: CVE-2013-0679

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2013-0679
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2013-0679
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2013-02175
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201303-447
value:	MEDIUM
Trust: 0.6
IVD:	090c28be-2353-11e6-abef-000c29c66e3d
value:	MEDIUM
Trust: 0.2
VULHUB:	VHN-60681
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2013-0679
severity:	MEDIUM
baseScore:	4.0
vectorString:	AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2013-02175
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	090c28be-2353-11e6-abef-000c29c66e3d
severity:	MEDIUM
baseScore:	4.0
vectorString:	AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-60681
severity:	MEDIUM
baseScore:	4.0
vectorString:	AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: IVD: 090c28be-2353-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-02175 // VULHUB: VHN-60681 // JVNDB: JVNDB-2013-001991 // CNNVD: CNNVD-201303-447 // NVD: CVE-2013-0679

PROBLEMTYPE DATA

problemtype:

CWE-22

Trust: 1.9

sources: VULHUB: VHN-60681 // JVNDB: JVNDB-2013-001991 // NVD: CVE-2013-0679

THREAT TYPE

remote

Trust: 1.3

sources: PACKETSTORM: 120899 // CNNVD: CNNVD-201303-363 // CNNVD: CNNVD-201303-447

TYPE

Path traversal

Trust: 0.8

sources: IVD: 090c28be-2353-11e6-abef-000c29c66e3d // CNNVD: CNNVD-201303-447

CONFIGURATIONS

sources: JVNDB: JVNDB-2013-001991

PATCH

title:	Top Page	url:	http://www.siemens.com/entry/cc/en/	Trust: 0.8
title:	SSA-714398: Vulnerabilities in WinCC 7.0 SP3 Update 1	url:	http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-714398.pdf	Trust: 0.8
title:	シーメンスソリューションパートナー	url:	http://www.automation.siemens.com/automation/jp/ja/solutionpartner/pages/default.aspx	Trust: 0.8
title:	シーメンス・ジャパン株式会社	url:	http://www.siemens.com/answers/jp/ja/	Trust: 0.8
title:	Siemens SIMATIC WinCC and PCS 7 have patches for multiple vulnerabilities such as information leakage, directory traversal, buffer overflows, etc.	url:	https://www.cnvd.org.cn/patchInfo/show/33002	Trust: 0.6

sources: CNVD: CNVD-2013-02175 // JVNDB: JVNDB-2013-001991

EXTERNAL IDS

db:	NVD	id:	CVE-2013-0679	Trust: 3.1
db:	ICS CERT	id:	ICSA-13-079-02	Trust: 2.8
db:	SIEMENS	id:	SSA-714398	Trust: 2.0
db:	BID	id:	58545	Trust: 1.5
db:	CNNVD	id:	CNNVD-201303-447	Trust: 0.9
db:	JVNDB	id:	JVNDB-2013-001991	Trust: 0.8
db:	CNVD	id:	CNVD-2013-02175	Trust: 0.6
db:	CNNVD	id:	CNNVD-201303-363	Trust: 0.6
db:	IVD	id:	090C28BE-2353-11E6-ABEF-000C29C66E3D	Trust: 0.2
db:	VULHUB	id:	VHN-60681	Trust: 0.1
db:	PACKETSTORM	id:	120899	Trust: 0.1

sources: IVD: 090c28be-2353-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-02175 // VULHUB: VHN-60681 // BID: 58545 // JVNDB: JVNDB-2013-001991 // PACKETSTORM: 120899 // CNNVD: CNNVD-201303-363 // CNNVD: CNNVD-201303-447 // NVD: CVE-2013-0679

REFERENCES

url:	http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-714398.pdf	Trust: 2.0
url:	http://ics-cert.us-cert.gov/pdf/icsa-13-079-02.pdf	Trust: 2.0
url:	http://www.securityfocus.com/bid/58545	Trust: 1.2
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-0679	Trust: 0.8
url:	http://ics-cert.us-cert.gov/pdf/icsa-13-079-02-a.pdf	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-0679	Trust: 0.8
url:	http://www.automation.siemens.com/mcms/human-machine-interface/en/visualization-software/scada/simatic-wincc/pages/default.aspx	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2013-0677	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-0674	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-0678	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-0676	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-0679	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-0675	Trust: 0.1

sources: CNVD: CNVD-2013-02175 // VULHUB: VHN-60681 // BID: 58545 // JVNDB: JVNDB-2013-001991 // PACKETSTORM: 120899 // CNNVD: CNNVD-201303-363 // CNNVD: CNNVD-201303-447 // NVD: CVE-2013-0679

CREDITS

Vendor, Gleb Gritsai and Sergey Gordeychik from Positive Technologies

Trust: 0.9

sources: BID: 58545 // CNNVD: CNNVD-201303-363

SOURCES

db:	IVD	id:	090c28be-2353-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2013-02175
db:	VULHUB	id:	VHN-60681
db:	BID	id:	58545
db:	JVNDB	id:	JVNDB-2013-001991
db:	PACKETSTORM	id:	120899
db:	CNNVD	id:	CNNVD-201303-363
db:	CNNVD	id:	CNNVD-201303-447
db:	NVD	id:	CVE-2013-0679

LAST UPDATE DATE

2024-08-14T14:06:52.282000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2013-02175	date:	2013-03-26T00:00:00
db:	VULHUB	id:	VHN-60681	date:	2013-03-22T00:00:00
db:	BID	id:	58545	date:	2013-04-02T15:37:00
db:	JVNDB	id:	JVNDB-2013-001991	date:	2013-03-25T00:00:00
db:	CNNVD	id:	CNNVD-201303-363	date:	2013-03-19T00:00:00
db:	CNNVD	id:	CNNVD-201303-447	date:	2013-03-25T00:00:00
db:	NVD	id:	CVE-2013-0679	date:	2013-03-22T14:25:30.613

SOURCES RELEASE DATE

db:	IVD	id:	090c28be-2353-11e6-abef-000c29c66e3d	date:	2013-03-22T00:00:00
db:	CNVD	id:	CNVD-2013-02175	date:	2013-03-26T00:00:00
db:	VULHUB	id:	VHN-60681	date:	2013-03-21T00:00:00
db:	BID	id:	58545	date:	2013-03-15T00:00:00
db:	JVNDB	id:	JVNDB-2013-001991	date:	2013-03-25T00:00:00
db:	PACKETSTORM	id:	120899	date:	2013-03-21T15:07:17
db:	CNNVD	id:	CNNVD-201303-363	date:	2013-03-19T00:00:00
db:	CNNVD	id:	CNNVD-201303-447	date:	2013-03-22T00:00:00
db:	NVD	id:	CVE-2013-0679	date:	2013-03-21T15:55:01.613