(0Day) Schneider Electric U.motion Builder message_simple_html reboot Parameter Denial of Service Vulnerability

2017-06-12T00:00:00
ID ZDI-17-375
Type zdi
Reporter rgod
Modified 2017-06-12T00:00:00

Description

This vulnerability allows remote attackers to deny service on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability.

The specific flaw exists within processing of message_simple_html.php, which is exposed on the web service. The reboot option of the applet reboots the system. This flaw allows a remote attacker to perpetually reboot the system, denying service to all users.