ID

VAR-201306-0316


CVE

CVE-2013-3959


TITLE

Siemens SIMATIC WinCC/PCS 7 User Name Enumeration Vulnerability

Trust: 0.8

sources: IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-07608

DESCRIPTION

The Web Navigator in Siemens WinCC before 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and earlier and other products, exhibits different behavior for NetBIOS user names depending on whether the user account exists, which allows remote authenticated users to enumerate account names via crafted URL parameters. Siemens SIMATIC WinCC is a monitoring control and data acquisition SCADA and human machine interface HMI system. Siemens SIMATIC PCS is a process control system. Siemens SIMATIC WinCC And PCS 7 are prone to a username-enumeration weakness because of a design error in the application when verifying user-supplied input. Attackers may exploit this weakness to discern valid usernames. This may aid brute-force password cracking or other attacks. There is a vulnerability in the Web Navigator in Siemens WinCC 7.2 Update 1 and earlier versions used in SIMATIC PCS7 8.0 SP1 and earlier versions and other products

Trust: 2.7

sources: NVD: CVE-2013-3959 // JVNDB: JVNDB-2013-002984 // CNVD: CNVD-2013-07608 // BID: 60559 // IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // VULHUB: VHN-63961

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-07608

AFFECTED PRODUCTS

vendor:siemensmodel:simatic pcs7scope:eqversion:8.0

Trust: 1.6

vendor:siemensmodel:winccscope:eqversion:7.1

Trust: 1.6

vendor:siemensmodel:winccscope:eqversion:7.0

Trust: 1.6

vendor:siemensmodel:winccscope:lteversion:7.2

Trust: 1.0

vendor:siemensmodel:simatic pcs7scope:lteversion:8.0

Trust: 1.0

vendor:winccmodel: - scope:eqversion:7.0

Trust: 0.8

vendor:siemensmodel:simatic pcs 7scope:lteversion:8.0 sp1

Trust: 0.8

vendor:siemensmodel:simatic winccscope:ltversion:7.2 update 1

Trust: 0.8

vendor:siemensmodel:simatic winccscope:eqversion:7.x

Trust: 0.6

vendor:siemensmodel:simatic pcsscope:eqversion:78.x

Trust: 0.6

vendor:siemensmodel:winccscope:eqversion:7.2

Trust: 0.6

vendor:winccmodel: - scope:eqversion:7.1

Trust: 0.4

vendor:simatic pcs7model: - scope:eqversion:8.0

Trust: 0.2

vendor:simatic pcs7model: - scope:eqversion:*

Trust: 0.2

vendor:winccmodel: - scope:eqversion:*

Trust: 0.2

sources: IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-07608 // JVNDB: JVNDB-2013-002984 // CNNVD: CNNVD-201306-249 // NVD: CVE-2013-3959

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2013-3959
value: MEDIUM

Trust: 1.0

NVD: CVE-2013-3959
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2013-07608
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201306-249
value: MEDIUM

Trust: 0.6

IVD: e694e1ea-2352-11e6-abef-000c29c66e3d
value: MEDIUM

Trust: 0.2

VULHUB: VHN-63961
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2013-3959
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2013-07608
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: e694e1ea-2352-11e6-abef-000c29c66e3d
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-63961
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-07608 // VULHUB: VHN-63961 // JVNDB: JVNDB-2013-002984 // CNNVD: CNNVD-201306-249 // NVD: CVE-2013-3959

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.9

sources: VULHUB: VHN-63961 // JVNDB: JVNDB-2013-002984 // NVD: CVE-2013-3959

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201306-249

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201306-249

CONFIGURATIONS

sources: JVNDB: JVNDB-2013-002984

PATCH

title:SSA-345843: Vulnerabilites in WinCC 7.2url:http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-345843.pdf

Trust: 0.8

title:Siemens SIMATIC WinCC/PCS 7 User Name Enumeration Patchurl:https://www.cnvd.org.cn/patchInfo/show/34668

Trust: 0.6

sources: CNVD: CNVD-2013-07608 // JVNDB: JVNDB-2013-002984

EXTERNAL IDS

db:NVDid:CVE-2013-3959

Trust: 3.6

db:SIEMENSid:SSA-345843

Trust: 2.0

db:SECUNIAid:53805

Trust: 1.2

db:ICS CERTid:ICSA-13-169-02

Trust: 1.1

db:BIDid:60559

Trust: 1.0

db:CNNVDid:CNNVD-201306-249

Trust: 0.9

db:CNVDid:CNVD-2013-07608

Trust: 0.8

db:JVNDBid:JVNDB-2013-002984

Trust: 0.8

db:IVDid:E694E1EA-2352-11E6-ABEF-000C29C66E3D

Trust: 0.2

db:VULHUBid:VHN-63961

Trust: 0.1

sources: IVD: e694e1ea-2352-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-07608 // VULHUB: VHN-63961 // BID: 60559 // JVNDB: JVNDB-2013-002984 // CNNVD: CNNVD-201306-249 // NVD: CVE-2013-3959

REFERENCES

url:http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-345843.pdf

Trust: 2.0

url:https://ics-cert.us-cert.gov/advisories/icsa-13-169-02

Trust: 1.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-3959

Trust: 0.8

url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-3959

Trust: 0.8

url:http://secunia.com/advisories/53805/

Trust: 0.6

url:http://secunia.com/advisories/53805

Trust: 0.6

url:http://www.siemens.com/

Trust: 0.3

url:http://www.automation.siemens.com/mcms/human-machine-interface/en/visualization-software/scada/simatic-wincc/pages/default.aspx

Trust: 0.3

sources: CNVD: CNVD-2013-07608 // VULHUB: VHN-63961 // BID: 60559 // JVNDB: JVNDB-2013-002984 // CNNVD: CNNVD-201306-249 // NVD: CVE-2013-3959

CREDITS

Alexander Tlyapov from Positive Technologies

Trust: 0.3

sources: BID: 60559

SOURCES

db:IVDid:e694e1ea-2352-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2013-07608
db:VULHUBid:VHN-63961
db:BIDid:60559
db:JVNDBid:JVNDB-2013-002984
db:CNNVDid:CNNVD-201306-249
db:NVDid:CVE-2013-3959

LAST UPDATE DATE

2024-08-14T14:28:02.964000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2013-07608date:2013-06-19T00:00:00
db:VULHUBid:VHN-63961date:2013-06-17T00:00:00
db:BIDid:60559date:2015-03-19T09:11:00
db:JVNDBid:JVNDB-2013-002984date:2013-06-25T00:00:00
db:CNNVDid:CNNVD-201306-249date:2013-06-18T00:00:00
db:NVDid:CVE-2013-3959date:2013-06-17T04:00:00

SOURCES RELEASE DATE

db:IVDid:e694e1ea-2352-11e6-abef-000c29c66e3ddate:2013-06-19T00:00:00
db:CNVDid:CNVD-2013-07608date:2013-06-19T00:00:00
db:VULHUBid:VHN-63961date:2013-06-14T00:00:00
db:BIDid:60559date:2013-06-14T00:00:00
db:JVNDBid:JVNDB-2013-002984date:2013-06-18T00:00:00
db:CNNVDid:CNNVD-201306-249date:2013-06-18T00:00:00
db:NVDid:CVE-2013-3959date:2013-06-14T19:55:01.270