PT-2015-1271 · Siemens · Ruggedcom Win51Xx+3

Published

2015-02-02

·

Updated

2015-02-04

·

CVE-2015-1449

CVSS v2.0

10

High

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Siemens Ruggedcom WIN51xx versions prior to SS4.4.4624.35 Siemens Ruggedcom WIN52xx versions prior to SS4.4.4624.35 Siemens Ruggedcom WIN70xx versions prior to BS4.4.4621.32 Siemens Ruggedcom WIN72xx versions prior to BS4.4.4621.32
Description The issue is related to a buffer overflow error in the integrated web server of the affected devices. This error can be exploited by a remote attacker to execute arbitrary code. The vulnerability allows attackers to act remotely, potentially leading to the execution of malicious code.
Recommendations For Siemens Ruggedcom WIN51xx versions prior to SS4.4.4624.35, update the firmware to version SS4.4.4624.35 or later. For Siemens Ruggedcom WIN52xx versions prior to SS4.4.4624.35, update the firmware to version SS4.4.4624.35 or later. For Siemens Ruggedcom WIN70xx versions prior to BS4.4.4621.32, update the firmware to version BS4.4.4621.32 or later. For Siemens Ruggedcom WIN72xx versions prior to BS4.4.4621.32, update the firmware to version BS4.4.4621.32 or later.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2015-10298
BDU:2015-10299
BDU:2015-10300
BDU:2015-10301
CVE-2015-1449

Affected Products

Ruggedcom Win51Xx
Ruggedcom Win52Xx
Ruggedcom Win70Xx
Ruggedcom Win72Xx