CVE-2018-11464

Name of the Vulnerable Software and Affected Versions SINUMERIK 828D V4.7 versions prior to V4.7 SP6 HF1 SINUMERIK 840D sl V4.7 versions prior to V4.7 SP6 HF5 SINUMERIK 840D sl V4.8 versions prior to V4.8 SP3

Description A vulnerability has been identified that could allow a remote attacker to cause a Denial-of-Service condition of the VNC server by exploiting the integrated VNC server on port 5900/tcp. This vulnerability is only exploitable if port 5900/tcp is manually opened in the firewall configuration of network port X130. Successful exploitation requires no privileges and no user interaction, and could allow an attacker to compromise availability of the VNC server. The vulnerability can be exploited by sending specially prepared packets to the port 5900/TCP. At the time of advisory publication, no public exploitation of this security vulnerability was known.

Recommendations For SINUMERIK 828D V4.7 versions prior to V4.7 SP6 HF1, update to V4.7 SP6 HF1 or later to resolve the issue. For SINUMERIK 840D sl V4.7 versions prior to V4.7 SP6 HF5, update to V4.7 SP6 HF5 or later to resolve the issue. For SINUMERIK 840D sl V4.8 versions prior to V4.8 SP3, update to V4.8 SP3 or later to resolve the issue. As a temporary workaround, consider restricting access to the VNC server on port 5900/TCP to minimize the risk of exploitation.