Sign-up

ID

VAR-201306-0316


CVE

CVE-2013-3959


TITLE

Siemens SIMATIC WinCC/PCS 7 User Name Enumeration Vulnerability

Trust: 0.8

sources: IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-07608

DESCRIPTION

The Web Navigator in Siemens WinCC before 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and earlier and other products, exhibits different behavior for NetBIOS user names depending on whether the user account exists, which allows remote authenticated users to enumerate account names via crafted URL parameters. Siemens SIMATIC WinCC is a monitoring control and data acquisition SCADA and human machine interface HMI system. Siemens SIMATIC PCS is a process control system. Siemens SIMATIC WinCC And PCS 7 are prone to a username-enumeration weakness because of a design error in the application when verifying user-supplied input. Attackers may exploit this weakness to discern valid usernames. This may aid brute-force password cracking or other attacks. There is a vulnerability in the Web Navigator in Siemens WinCC 7.2 Update 1 and earlier versions used in SIMATIC PCS7 8.0 SP1 and earlier versions and other products

Trust: 2.7

sources: NVD: CVE-2013-3959 // JVNDB: JVNDB-2013-002984 // CNVD: CNVD-2013-07608 // BID: 60559 // IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // VULHUB: VHN-63961

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-07608

AFFECTED PRODUCTS

vendor:siemensmodel:simatic pcs7scope:eqversion:8.0

Trust: 1.6

vendor:siemensmodel:winccscope:eqversion:7.1

Trust: 1.6

vendor:siemensmodel:winccscope:eqversion:7.0

Trust: 1.6

vendor:siemensmodel:winccscope:lteversion:7.2

Trust: 1.0

vendor:siemensmodel:simatic pcs7scope:lteversion:8.0

Trust: 1.0

vendor:winccmodel: - scope:eqversion:7.0

Trust: 0.8

vendor:siemensmodel:simatic pcs 7scope:lteversion:8.0 sp1

Trust: 0.8

vendor:siemensmodel:simatic winccscope:ltversion:7.2 update 1

Trust: 0.8

vendor:siemensmodel:simatic winccscope:eqversion:7.x

Trust: 0.6

vendor:siemensmodel:simatic pcsscope:eqversion:78.x

Trust: 0.6

vendor:siemensmodel:winccscope:eqversion:7.2

Trust: 0.6

vendor:winccmodel: - scope:eqversion:7.1

Trust: 0.4

vendor:simatic pcs7model: - scope:eqversion:8.0

Trust: 0.2

vendor:simatic pcs7model: - scope:eqversion:*

Trust: 0.2

vendor:winccmodel: - scope:eqversion:*

Trust: 0.2

sources: IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-07608 // JVNDB: JVNDB-2013-002984 // CNNVD: CNNVD-201306-249 // NVD: CVE-2013-3959

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2013-3959
value: MEDIUM

Trust: 1.0

NVD: CVE-2013-3959
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2013-07608
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201306-249
value: MEDIUM

Trust: 0.6

IVD: e694e1ea-2352-11e6-abef-000c29c66e3d
value: MEDIUM

Trust: 0.2

VULHUB: VHN-63961
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2013-3959
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2013-07608
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: e694e1ea-2352-11e6-abef-000c29c66e3d
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-63961
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-07608 // VULHUB: VHN-63961 // JVNDB: JVNDB-2013-002984 // CNNVD: CNNVD-201306-249 // NVD: CVE-2013-3959

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.9

sources: VULHUB: VHN-63961 // JVNDB: JVNDB-2013-002984 // NVD: CVE-2013-3959

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201306-249

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201306-249

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2013-002984

PATCH
title:SSA-345843: Vulnerabilites in WinCC 7.2url:http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-345843.pdf
Trust: 0.8
title:Siemens SIMATIC WinCC/PCS 7 User Name Enumeration Patchurl:https://www.cnvd.org.cn/patchInfo/show/34668
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2013-07608 // 
            
            
            
            JVNDB: JVNDB-2013-002984

EXTERNAL IDS
db:NVDid:CVE-2013-3959
Trust: 3.6
db:SIEMENSid:SSA-345843
Trust: 2.0
db:SECUNIAid:53805
Trust: 1.2
db:ICS CERTid:ICSA-13-169-02
Trust: 1.1
db:BIDid:60559
Trust: 1.0
db:CNNVDid:CNNVD-201306-249
Trust: 0.9
db:CNVDid:CNVD-2013-07608
Trust: 0.8
db:JVNDBid:JVNDB-2013-002984
Trust: 0.8
db:IVDid:E694E1EA-2352-11E6-ABEF-000C29C66E3D
Trust: 0.2
db:VULHUBid:VHN-63961
Trust: 0.1
sources:
            
            
            IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // 
            
            
            
            CNVD: CNVD-2013-07608 // 
            
            
            
            VULHUB: VHN-63961 // 
            
            
            
            BID: 60559 // 
            
            
            
            JVNDB: JVNDB-2013-002984 // 
            
            
            
            CNNVD: CNNVD-201306-249 // 
            
            
            
            NVD: CVE-2013-3959

REFERENCES
url:http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-345843.pdf
Trust: 2.0
url:https://ics-cert.us-cert.gov/advisories/icsa-13-169-02
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-3959
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-3959
Trust: 0.8
url:http://secunia.com/advisories/53805/
Trust: 0.6
url:http://secunia.com/advisories/53805
Trust: 0.6
url:http://www.siemens.com/
Trust: 0.3
url:http://www.automation.siemens.com/mcms/human-machine-interface/en/visualization-software/scada/simatic-wincc/pages/default.aspx
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2013-07608 // 
            
            
            
            VULHUB: VHN-63961 // 
            
            
            
            BID: 60559 // 
            
            
            
            JVNDB: JVNDB-2013-002984 // 
            
            
            
            CNNVD: CNNVD-201306-249 // 
            
            
            
            NVD: CVE-2013-3959

CREDITS
Alexander Tlyapov from Positive Technologies
Trust: 0.3
sources:
            
            
            BID: 60559

SOURCES
db:IVDid:e694e1ea-2352-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2013-07608
db:VULHUBid:VHN-63961
db:BIDid:60559
db:JVNDBid:JVNDB-2013-002984
db:CNNVDid:CNNVD-201306-249
db:NVDid:CVE-2013-3959

LAST UPDATE DATE
2024-08-14T14:28:02.964000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2013-07608date:2013-06-19T00:00:00
db:VULHUBid:VHN-63961date:2013-06-17T00:00:00
db:BIDid:60559date:2015-03-19T09:11:00
db:JVNDBid:JVNDB-2013-002984date:2013-06-25T00:00:00
db:CNNVDid:CNNVD-201306-249date:2013-06-18T00:00:00
db:NVDid:CVE-2013-3959date:2013-06-17T04:00:00

SOURCES RELEASE DATE
db:IVDid:e694e1ea-2352-11e6-abef-000c29c66e3ddate:2013-06-19T00:00:00
db:CNVDid:CNVD-2013-07608date:2013-06-19T00:00:00
db:VULHUBid:VHN-63961date:2013-06-14T00:00:00
db:BIDid:60559date:2013-06-14T00:00:00
db:JVNDBid:JVNDB-2013-002984date:2013-06-18T00:00:00
db:CNNVDid:CNNVD-201306-249date:2013-06-18T00:00:00
db:NVDid:CVE-2013-3959date:2013-06-14T19:55:01.270