#VU10354 Resource exhaustion in TeleControl Server Basic - CVE-2018-4837

Cybersecurity Help s.r.o.

Published: 2018-02-01

Vulnerability identifier: #VU10354

Vulnerability risk: Low

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-4837

CWE-ID: CWE-400

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
TeleControl Server Basic
Client/Desktop applications / Other client software

Vendor: Siemens

Description
The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to resource exhaustion. A remote attacker with access to the TeleControl Server Basic’s webserver (Ports 80/TCP or 443/TCP) can trigger memory corruption and cause the web server to crash.

Mitigation
Siemens has identified the following specific workarounds and mitigations that customers can apply to reduce the risk:
• Customers can use the Windows firewall to close port 80/tcp and 443/tcp.

Vulnerable software versions

TeleControl Server Basic: 3.1

External links
https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-651454.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Siemens TeleControl Server Basic