Details of VAR-201103-0366

ID

VAR-201103-0366

TITLE

Multiple security vulnerabilities in Siemens Tecnomatix FactoryLink

Trust: 0.6

sources: CNVD: CNVD-2011-1188

DESCRIPTION

Siemens Tecnomatix FactoryLink is an industrial automation software. There are several security vulnerabilities in Siemens Tecnomatix FactoryLink, including buffer overflows, memory corruption, information disclosure, and denial of service attacks. An attacker can exploit a vulnerability to gain sensitive information, run arbitrary code, or crash an application. Other attacks may also be possible. Siemens Tecnomatix FactoryLink 8.0.1.1473 is vulnerable; other versions may also be affected

Trust: 0.99

sources: CNVD: CNVD-2011-1188 // BID: 46934 // IVD: 149fb36e-1f9b-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 149fb36e-1f9b-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-1188

AFFECTED PRODUCTS

vendor:

siemens

model:

tecnomatix factorylink

scope:

version:

8.0.1.1473

Trust: 1.1

sources: IVD: 149fb36e-1f9b-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-1188 // BID: 46934

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD:	149fb36e-1f9b-11e6-abef-000c29c66e3d
value:	HIGH
Trust: 0.2

IVD:	149fb36e-1f9b-11e6-abef-000c29c66e3d
severity:	NONE
baseScore:	NONE
vectorString:	NONE
accessVector:	NONE
accessComplexity:	NONE
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	UNKNOWN
Trust: 0.2

sources: IVD: 149fb36e-1f9b-11e6-abef-000c29c66e3d

THREAT TYPE

network

Trust: 0.3

sources: BID: 46934

TYPE

Unknown

Trust: 0.3

sources: BID: 46934

PATCH

title:

Siemens Tecnomatix FactoryLink has multiple patches for security vulnerabilities

url:

https://www.cnvd.org.cn/patchinfo/show/72724

Trust: 0.6

sources: CNVD: CNVD-2011-1188

EXTERNAL IDS

db:	BID	id:	46934	Trust: 0.9
db:	CNVD	id:	CNVD-2011-1188	Trust: 0.8
db:	IVD	id:	149FB36E-1F9B-11E6-ABEF-000C29C66E3D	Trust: 0.2

sources: IVD: 149fb36e-1f9b-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-1188 // BID: 46934

REFERENCES

url:	http://www.securityfocus.com/bid/46934http	Trust: 0.6
url:	http://www.plm.automation.siemens.com/en_us/products/tecnomatix/production_management/factorylink/index.shtml	Trust: 0.3
url:	http://aluigi.org/adv/factorylink_1-adv.txt	Trust: 0.3
url:	http://aluigi.org/adv/factorylink_2-adv.txt	Trust: 0.3
url:	http://aluigi.org/adv/factorylink_3-adv.txt	Trust: 0.3
url:	http://aluigi.org/adv/factorylink_4-adv.txt	Trust: 0.3
url:	http://aluigi.org/adv/factorylink_5-adv.txt	Trust: 0.3
url:	http://aluigi.org/adv/factorylink_6-adv.txt	Trust: 0.3
url:	/archive/1/517080	Trust: 0.3

sources: CNVD: CNVD-2011-1188 // BID: 46934

CREDITS

Luigi Auriemma

Trust: 0.3

sources: BID: 46934

SOURCES

db:	IVD	id:	149fb36e-1f9b-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2011-1188
db:	BID	id:	46934

LAST UPDATE DATE

2022-05-17T01:45:41.133000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2011-1188	date:	2016-03-15T00:00:00
db:	BID	id:	46934	date:	2011-06-27T07:30:00

SOURCES RELEASE DATE

db:	IVD	id:	149fb36e-1f9b-11e6-abef-000c29c66e3d	date:	2011-03-22T00:00:00
db:	CNVD	id:	CNVD-2011-1188	date:	2011-03-22T00:00:00
db:	BID	id:	46934	date:	2011-03-21T00:00:00