Siemens SICAM A8000 Series »Ø¾ø·þÎñ·ì϶°²È«¹«¸æ

°ä²¼¹¦·ò 2019-01-21

·ì϶±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2018-13798£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º5.3£¬¹Ù·½Î´ÆÀ¶¨


Ó°Ïì°æ±¾


SICAM A8000 CP-8000 < V14

SICAM A8000 CP-802X < V14

SICAM A8000 CP-8050 < V2.00


·ì϶¸ÅÊö


Siemens SICAM A8000 CP-800¡¢SICAM A8000 CP-802XºÍSICAM A8000 CP-8050ÊÇÒ»¿îA8000ϵÁÐÄ£¿é»¯É豸£¬ÖØÒªÓÃÓÚÄÜÔ´¹©¸øÁìÓòµÄÔ¶³Ì½ÚÔìºÍ×Ô¶¯»¯ÀûÓá£


Siemens SICAM A8000 SeriesÔÚ´¦Ö÷¢Ë͵½ 80/TCP»ò443/TCP¶Ë¿ÚµÄ¶ñÒâÍøÂ籨ÎÄÖдæÔÚXML±í²¿ÊµÌå×¢Èë·ì϶¡£¹¥»÷Õß¿ÉÀûÓø÷ì϶Ôì³É»Ø¾ø·þÎñ¡£


·ì϶ÀûÓÃ


µ±Ö´ÐÐWebÖÎÀí½çÃæÉϵĵǼʱ£¬ÒÔÏÂÄÚÈÝÒªÇó·¢Ë͵½·þÎñÆ÷£º


±¦ÔËÀ³¡¤(ÖйúÇø)×îйٷ½ÍøÕ¾



ͨ¹ýÅú¸ÄXMLÐÂÎÅ£¬Äܹ»¶ÔWebÖÎÀí½çÃæÖ´Ðлؾø·þÎñ¹¥»÷£º


±¦ÔËÀ³¡¤(ÖйúÇø)×îйٷ½ÍøÕ¾



É豸ÉϵÄXML½âÎöÆ÷³¢ÊÔ½âÎö±í²¿ÊµÌå¡£Õ⽫¿÷ËðËùÓпÉÓÃÄڴ棬WebÖÎÀí½çÃæ²»ÏìÓ¦ÁË¡£ÈôÊÇÔÚä¯ÀÀÆ÷ÖÐË¢ÐÂWebÖÎÀí½çÃ棬ÔòÒÔÏÂÐÂÎųöÏÖ£º


The device is currently unreachable. Retrying to connect.


É豸ÉϵÄÆäËû·þÎñ²»ÊÜÓ°Ï죬ֻÓÐWebÖÎÀí½çÃæÒÀÈ»ÎÞ·¨Ê¹ÓÃÖ±µ½É豸³ÁÐÂÆô¶¯¡£


½¨¸´½¨Ò飺


SICAM A8000 CP-8000Éý¼¶µ½V14

SICAM A8000 CP-802XÉý¼¶µ½V14

SICAM A8000 CP-8050Éý¼¶µ½V2.00

Ä¿Ç°³§ÉÌÒÑ°ä²¼Éý¼¶²¹¶¡ÒÔ½¨¸´·ì϶£¬²¹¶¡»ñÈ¡Á´½Ó:https://cert-portal.siemens.com/productcert/pdf/ssa-579309.pdf ¡£


²Î¿¼Á´½Ó£º

https://packetstormsecurity.com/files/151217/Siemens-SICAM-A8000-Series-Denial-Of-Service.html

https://cert-portal.siemens.com/productcert/pdf/ssa-579309.pdf