This week we have two vendor updates (Rockwell and Siemens),
two coordinated disclosures with POC (Sony), and proof-of-concept code (POC)
for a recently disclosed vulnerability in Echelon products. There is also an
announcement about an update to a security tool from OSIsoft.
Rockwell Update
Rockwell updated
their FactoryTalk® Activation Manager advisory (previous
update). The new version notes that: “Cisco has released several Snort
Rules [Snort Rule 38246, Snort Rule 38247,
Snort Rule
39910] to addressing the Flexera software vulnerability.”
NOTE 1: Since at least one other vendor (Schneider)
apparently uses the same third-party software these Cisco snort rules may be
more widely applicable in the control system community.
NOTE 2: This was published on Friday so there is a good
chance that we will see the ICS-CERT version of this advisory updated in the
coming week.
Siemens Update
Siemens published an update
of their general advisory on the Spectre/Meltdown vulnerabilities. Siemens
continues to expand their coverage of the newer versions of this problem; this
time adding information on the Lazy FP State Restore and Spectre V1.1
vulnerabilities. While the latest
version of the ICS-CERT Spectre/Meltdown alert does provide a link to this
advisory, there is no mention of the newer versions of this continuing problem
in that alert.
Sony Vulnerabilities
Talos Intelligence published two vulnerability reports (here
and here)
for coordinated disclosures of vulnerabilities in the Sony IPELA E Series
Camera. According to the reports Sony has a patch available to mitigate the
vulnerabilities, but there is no indication that they have had the opportunity
to verify the efficacy of the fix.
The two reported vulnerabilities are:
• Command injection - CVE-2018-3937;
and
• Stack-based buffer overflow - CVE-2018-3938
NOTE: This was reported Friday, so there is always a chance
that ICS-CERT will report this in the coming week. They have reported on IP
camera vulnerabilities before, but do not necessarily report on all such
vulnerabilities.
Echelon Exploit
Maxim Rupp published
proof-of-concept exploit code on TWITTER for one of the Echelon vulnerabilities
reported
this week by ICS-CERT. Maxim has reportedly known about this vulnerability
for about a year now; no word on why he has not reported it.
OSIsoft Security Audit Tool
OSIsoft announced
that they have a new version of their PI Security Audit Tools (v. 2.2.0.3)
available. They note that: “This tool is a PowerShell module that performs
validation checks for the machine, PI Data Archive, PI AF Server, SQL Server,
and PI Vision, indicating areas where the security configuration is out of
compliance with best practices, and providing actionable information to address
the issue.”
Posts
No comments:
Post a Comment