SB2018111411 - Denial of service vulnerabilities in Siemens SIMATIC S7

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Resource exhaustion (CVE-ID: CVE-2018-13815)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The vulnerability exists due to resource exhaustion. A remote attacker can send packets to Port 102/TCP, exhaust the available connection pool by opening a sufficient number of connections to the device and cause the service to crash.

2) Improper input validation (CVE-ID: CVE-2018-16556)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The vulnerability exists due to an error when processing malicious input. A remote attacker can send specially crafted packets to Port 102/TCP via Ethernet interface, via PROFIBUS, or via multi-point interfaces (MPI) and cause the affected devices to go into defect mode.

3) Improper input validation (CVE-ID: CVE-2018-16557)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The vulnerability exists due to an error when processing malicious input. A remote attacker can send specially crafted packets to Port 102/TCP via Ethernet interface via PROFIBUS or MPI and cause the affected devices to crash.

Remediation

Install update from vendor's website.

References

• https://ics-cert.us-cert.gov/advisories/ICSA-18-317-05
• https://ics-cert.us-cert.gov/advisories/ICSA-18-317-02