Main Vulnerability Database SB2016101305

SB2016101305 - SQL injection in Siemens Automation License Manager

Published: October 13, 2016 Updated: October 14, 2016

Security Bulletin ID SB2016101305

CSH Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) SQL injection (CVE-ID: CVE-2016-8564)

CWE-ID: CWE-20 - Improper input validation

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a remote unauthenticated user to execute SQL commands on the target system.
The weakness is due to improper input validation. By supplying a specially crafted parameter value to TCP port 4410 atackers can execute SQL commands on the database that allows to access configuration settings.
Successful exploitation of the vulnerability results in SQL commands execution on the vulnerable system.

Remediation

Install update from vendor's website.

References

http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-284342.pdf