Siemens SINEMA Remote Connect

Siemens SINEMA Remote Connect Server Cross-site Scripting Vulnerability

CVE-2016-6204 

109479599

A cross-site scripting (XSS) vulnerability in the Siemens SINEMA Remote Connect Server application. Siemens has produced an update to mitigate this vulnerability.

AFFECTED PRODUCTS

The following SINEMA Remote Connect Server versions are affected:

  • SINEMA Remote Connect Server, all versions prior to Version 1.2

IMPACT

Exploiting this vulnerability could enable attackers to read some files from Siemens SINEMA Remote Connect Server devices. This could enable a remote attacker ongoing access to these devices.

BACKGROUND

The affected product, SINEMA Remote Connect Server, is a network management appliance for industrial applications and allows network monitoring as well as diagnostics and reporting functions integrated into SCADA systems such as WinCC

VULNERABILITY

The integrated web server (Port 443/TCP) of the affected SINEMA Remote Connect Server could allow XSS attacks if unsuspecting users are tricked into accessing a malicious link.

EXPLOITABILITY

This vulnerability could be exploited remotely.

MITIGATION

Siemens provides software update V1.2 for SINEMA Remote Connect Server which fixes the vulnerability and recommends users update to the new version. The software update for SINEMA Remote Connect Server can be obtained at:

https://support.industry.siemens.com/cs/ww/en/view/109737963