MBS多款产品 输入验证错误漏洞

MBS Single-A and other products are a series of industrial communication gateways developed by the German company MBS. Several MBS products have a vulnerability related to input validation errors. This vulnerability stems from the insufficient input validation provided by the ugw-logstop method,...

MBS多款产品 安全漏洞

MBS Single-A and other products are a series of industrial communication gateways developed by the German company MBS. Several MBS products have security vulnerabilities; these vulnerabilities stem from insufficient validation of user-controlled inputs using the ugw-restore method, which could...

MBS多款产品 安全漏洞

MBS Single-A and other products are a series of industrial communication gateways developed by the German company MBS. Several MBS products have security vulnerabilities; these vulnerabilities stem from a stack buffer overflow in dali-devconfig, which could allow remote attackers to gain full...

MBS多款产品 安全漏洞

MBS Single-A and other models are a series of industrial communication gateways developed by the German company MBS. The MBS Universal Gateways have a security vulnerability; this vulnerability stems from the insufficient validation of user-controlled inputs in the bac-scanresult method, which...

MBS多款产品 安全漏洞

MBS Single-A and other products are a series of industrial communication gateways developed by the German company MBS. Several MBS products have security vulnerabilities. These vulnerabilities stem from insufficient validation of user-controlled inputs using the ugw-logstop method, which could...

MBS多款产品 安全漏洞

MBS Single-A and other products are a series of industrial communication gateways developed by the German company MBS. Several MBS products have security vulnerabilities; these vulnerabilities stem from a stack buffer overflow in the gdv-serverconfig module, which could allow remote attackers to...

MBS多款产品 安全漏洞

MBS Single-A and other products are a series of industrial communication gateways developed by the German company MBS. Several MBS products have security vulnerabilities; these vulnerabilities stem from stack buffer overflows, which may allow remote attackers to gain full system access as root...

MBS多款产品 安全漏洞

MBS Single-A and other products are a series of industrial communication gateways developed by the German company MBS. Several MBS products have security vulnerabilities; these vulnerabilities stem from the ugw-delete-file method, which insufficiently validates user-controlled inputs, potentially...

MBS多款产品 安全漏洞

MBS Single-A and other products are a series of industrial communication gateways developed by the German company MBS. Several MBS products have security vulnerabilities; these vulnerabilities stem from insufficient validation of user-controlled inputs through the ugw-restoreinfo method, which...

CVE-2017-2680

Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment Layer 2. Human interaction is required to recover the systems. PROFIBUS interfaces are not affected...

EUVD-2018-8363

Malware in sbrugna...

EUVD-2017-11823

Malware in sbrugna...

EUVD-2017-11824

Malware in sbrugna...

CVE-2017-2681

Specially crafted PROFINET DCP packets sent on a local Ethernet segment Layer 2 to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected...

Siemens SIMATIC S7-300 CPU Improper Input Validation (CVE-2018-16561)

A vulnerability has been identified in SIMATIC S7-300 CPUs All versions V3.X.16. The affected CPUs improperly validate S7 communication packets which could cause a Denial-of-Service condition of the CPU. The CPU will remain in DEFECT mode until manual restart. Successful exploitation requires an...

Siemens S7-400 CPUs Improper Input Validation (CVE-2018-16556)

A vulnerability has been identified in SIMATIC S7-400 incl. F V6 and below All versions, SIMATIC S7-400 PN/DP V7 incl. F All versions, SIMATIC S7-400H V4.5 and below All versions, SIMATIC S7-400H V6 All versions V6.0.9, SIMATIC S7-410 All versions V8.2.1. Specially crafted packets sent to port...

Siemens S7-300/400 PLC (CVE-2016-9159)

A vulnerability has been identified in SIMATIC S7-300 CPU family All versions, SIMATIC S7-300 CPU family incl. related ET200 CPUs and SIPLUS variants All versions, SIMATIC S7-400 PN/DP V6 and below CPU family incl. SIPLUS variants All versions, SIMATIC S7-400 PN/DP V7 CPU family incl. SIPLUS...

Siemens S7-400 CPUs Improper Verification of Cryptographic Signature (CVE-2018-16557)

A vulnerability has been identified in SIMATIC S7-400 incl. F V6 and below All versions, SIMATIC S7-400 PN/DP V7 incl. F All versions, SIMATIC S7-400H V4.5 and below All versions, SIMATIC S7-400H V6 All versions V6.0.9, SIMATIC S7-410 All versions V8.2.1. Sending of specially crafted packets to...

Analysing the Attack Surface of an Industrial Data Acquisition Device

Introduction The Data Station Plus from Red Lion Controls was handed to me to analyse the attack surface. The device is designed to connect to SCADA data acquisition devices over Modbus, Profibus, etc. by Serial or Ethernet connection. Data is collected and recorded to a local compact flash card...

Siemens Simatic Improper Input Validation

A vulnerability has been identified in SIMATIC S7-400 incl. F V6 and below All versions, SIMATIC S7-400 PN/DP V7 incl. F All versions, SIMATIC S7-400H V4.5 and below All versions, SIMATIC S7-400H V6 All versions V6.0.9, SIMATIC S7-410 All versions V8.2.1. Specially crafted packets sent to port...