Information disclosure

2019-03-0515:29:00

PRIOn knowledge base

www.prio-n.com

8.5 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.8%

JSON

UltraVNC revision 1198 contains multiple memory leaks (CWE-655) in VNC client code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1199.

CPENameOperatorVersion
sinumerik_access_mymachine\\/p2plt4.8
sinumerik_pcu_base_win10_software\\/ipclt14.00
sinumerik_pcu_base_win7_software\\/ipcle12.01
ultravnclt1.2.2.3

Name	Operator	Version
sinumerik_access_mymachine\\/p2p	lt	4.8
sinumerik_pcu_base_win10_software\\/ipc	lt	14.00
sinumerik_pcu_base_win7_software\\/ipc	le	12.01
ultravnc	lt	1.2.2.3

References

cert-portal.siemens.com/productcert/pdf/ssa-286838.pdf

cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf

cert-portal.siemens.com/productcert/pdf/ssa-940818.pdf

ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-005-ultravnc-memory-leak/

us-cert.cisa.gov/ics/advisories/icsa-21-131-11

www.us-cert.gov/ics/advisories/icsa-20-161-06