Siemens patches one security vuln, leaves folks to block second

LOGO owners on alert

Siemens has plugged a man-in-the-middle vulnerability in its LOGO!8 BM FS-05 industrial automation hardware – but a second remains unpatched.

The vulnerabilities were turned up by German researcher Maxim Rupp.

According to Siemens' advisory, CVE-2017-12734 can be exploited by an attacker to sniff the session ID from an active user session.

If the devices' admin web server is visible from the internet and a user is logged in, that would allow a remote attacker to hijack the admin session. The equipment maker notes the admin interface should be restricted to trusted networks. All versions of Logo!8 BM older than 1.18.2 are vulnerable and need a firmware update.

The second unpatched vulnerability is CVE-2017-12735: this is predominantly a local risk, in which an attacker could perform a MITM attack between a LOGO! BM unit and other devices on the network.

In the absence of a fix, Siemens provides configuration instructions which include using a VPN to protect traffic between cells in the network.

The Register notes that such fixes are more likely to be applied in industrial and commercial environments with IT and security teams. However, Siemens also pitches the at-risk units to domestic environments – such as gate controls, for example – where there may not be a dedicated IT person to apply the updates, and thus the upgrades might be less likely.

Other Siemens patches that landed this week include a fix for products affected by a resource exhaustion flaw, and a denial-of-service bug in a Sentron Ethernet module. ?


Biting the hand that feeds IT ? 1998–2017

  • 305452893 2018-01-22
  • 61770892 2018-01-22
  • 59080891 2018-01-22
  • 87471890 2018-01-22
  • 79096889 2018-01-22
  • 734763888 2018-01-22
  • 455411887 2018-01-22
  • 685280886 2018-01-22
  • 615657885 2018-01-22
  • 700163884 2018-01-21
  • 866691883 2018-01-21
  • 994750882 2018-01-21
  • 92145881 2018-01-21
  • 263961880 2018-01-21
  • 5823879 2018-01-21
  • 202428878 2018-01-21
  • 235407877 2018-01-21
  • 949120876 2018-01-21
  • 530375875 2018-01-21
  • 14090874 2018-01-21