Siemens SICAM A8000 Series »Ø¾ø·þÎñ·ì϶°²È«¹«¸æ

°ä²¼¹¦·ò 2019-01-21

·ì϶±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2018-13798 £¬Î£ÏÕ¼¶±ð£ºÖÐΣ £¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º5.3 £¬¹Ù·½Î´ÆÀ¶¨


Ó°Ïì°æ±¾


SICAM A8000 CP-8000 < V14

SICAM A8000 CP-802X < V14

SICAM A8000 CP-8050 < V2.00


·ì϶¸ÅÊö


Siemens SICAM A8000 CP-800¡¢SICAM A8000 CP-802XºÍSICAM A8000 CP-8050ÊÇÒ»¿îA8000ϵÁÐÄ£¿é»¯É豸 £¬ÖØÒªÓÃÓÚÄÜÔ´¹©¸øÁìÓòµÄÔ¶³Ì½ÚÔìºÍ×Ô¶¯»¯ÀûÓá£


Siemens SICAM A8000 SeriesÔÚ´¦Ö÷¢Ë͵½ 80/TCP»ò443/TCP¶Ë¿ÚµÄ¶ñÒâÍøÂ籨ÎÄÖдæÔÚXML±í²¿ÊµÌå×¢Èë·ì϶¡£¹¥»÷Õß¿ÉÀûÓø÷ì϶Ôì³É»Ø¾ø·þÎñ¡£


·ì϶ÀûÓÃ


µ±Ö´ÐÐWebÖÎÀí½çÃæÉϵĵǼʱ £¬ÒÔÏÂÄÚÈÝÒªÇó·¢Ë͵½·þÎñÆ÷£º


GA»Æ½ð¼×¡¤(ÖйúÇø)¹Ù·½ÍøÕ¾



ͨ¹ýÅú¸ÄXMLÐÂÎÅ £¬Äܹ»¶ÔWebÖÎÀí½çÃæÖ´Ðлؾø·þÎñ¹¥»÷£º


GA»Æ½ð¼×¡¤(ÖйúÇø)¹Ù·½ÍøÕ¾



É豸ÉϵÄXML½âÎöÆ÷³¢ÊÔ½âÎö±í²¿ÊµÌå¡£Õ⽫¿÷ËðËùÓпÉÓÃÄÚ´æ £¬WebÖÎÀí½çÃæ²»ÏìÓ¦ÁË¡£ÈôÊÇÔÚä¯ÀÀÆ÷ÖÐË¢ÐÂWebÖÎÀí½çÃæ £¬ÔòÒÔÏÂÐÂÎųöÏÖ£º


The device is currently unreachable. Retrying to connect.


É豸ÉϵÄÆäËû·þÎñ²»ÊÜÓ°Ïì £¬Ö»ÓÐWebÖÎÀí½çÃæÒÀÈ»ÎÞ·¨Ê¹ÓÃÖ±µ½É豸³ÁÐÂÆô¶¯¡£


½¨¸´½¨Ò飺


SICAM A8000 CP-8000Éý¼¶µ½V14

SICAM A8000 CP-802XÉý¼¶µ½V14

SICAM A8000 CP-8050Éý¼¶µ½V2.00

Ä¿Ç°³§ÉÌÒÑ°ä²¼Éý¼¶²¹¶¡ÒÔ½¨¸´·ì϶ £¬²¹¶¡»ñÈ¡Á´½Ó:https://cert-portal.siemens.com/productcert/pdf/ssa-579309.pdf ¡£


²Î¿¼Á´½Ó£º

https://packetstormsecurity.com/files/151217/Siemens-SICAM-A8000-Series-Denial-Of-Service.html

https://cert-portal.siemens.com/productcert/pdf/ssa-579309.pdf