Siemens rushes to patch IoT devices against Intel AMT flaw

Industrial control devices vulnerable to remote attack

Hacking

Siemens has issued patches to 38 of its industrial control products after it was discovered they were vulnerable to an Intel AMT flaw that could let hackers gain system privileges and run remote code.

According to an advisory published by Siemens, a flaw within several Intel chipsets found in Siemens products used in industrial control units feature Intel's Active Management Technology (AMT). These are susceptible to remote code execution vulnerability (CVE-2017-5689). 

Advertisement - Article continues below

The advisory said that a hacker could "gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM) and Intel Small Business Technology (SBT)."

Up to 38 products are affected by the bug. These include SIMATIC industrial PCs, SINUMERIK control panels and SIMOTION P320 PCs. The bug has a CVSS Base Score of 9.8.

While the company has provided a firmware update, it urged organisations to ensure that AMT is set to "un-configured" in the BIOS setup as a mitigation. It also advised protection of the following ports: 16992/TCP, 16993/TCP, 16994/TCP, 16995/TCP, 623/TCP, and 664/TCP.

"As a general security measure, Siemens strongly recommends to protect network access to the non-perimeter Industrial Products with appropriate mechanisms. It is advised to configure the environment according to our operational guidelines in order to run the products in a protected IT environment," it warned.

Advertisement
Advertisement - Article continues below

The firm also notified users of another bug, this time with its ViewPort for Web Office Portal. This is used by some energy companies to retrieve data from control centres.

Advertisement - Article continues below

In another advisory, it said that the flaw could enable an unauthenticated remote user could upload arbitrary code and execute it with the permissions of the operating system user running the web server by sending specially crafted network packets to port 443/TCP or port 80/TCP.

"The attacker must have network access to the web server on port 443/TCP or port 80/TCP of the affected product. Siemens recommends operating the affected product only within trusted networks," the firm said.

Featured Resources

Successful digital transformations are future ready - now

Research findings identify key ingredients to complete your transformation journey

Download now

Cyber security for accountants

3 ways to protect yourself and your clients online

Download now

The future of database administrators in the era of the autonomous database

Autonomous databases are here. So who needs database administrators anymore?

Download now

The IT expert’s guide to AI and content management

Your guide to the biggest opportunities for IT teams when it comes to AI and content management

Download now
Advertisement

Recommended

Visit/security/vulnerability/355276/businesses-brace-for-second-fujiwhara-effect-of-2020-as-patch-tuesday
vulnerability

Businesses brace for second 'Fujiwhara effect' of 2020 as Patch Tuesday looms

9 Apr 2020
Visit/security/cyber-security/355267/zoom-hires-ex-facebook-cso-to-boost-platform-security
cyber security

Zoom hires ex-Facebook CSO Alex Stamos to boost platform security

8 Apr 2020
Visit/security/vulnerability/355236/hp-support-assistant-flaws-leave-windows-devices-open-to-attack
vulnerability

HP Support Assistant flaws leave Windows devices open to attack

6 Apr 2020
Visit/security/cyber-security/355234/safari-bug-let-hackers-access-cameras-on-iphones-and-macs
cyber security

Safari bug let hackers access cameras on iPhones and Macs

6 Apr 2020

Most Popular

Visit/mobile/mobile-phones/355239/microsofts-patent-design-reveals-a-mobile-device-with-a-third-screen
Mobile Phones

Microsoft patents a mobile device with a third screen

6 Apr 2020
Visit/security/cyber-security/355271/microsoft-gobbles-up-corpcom-domain-to-keep-it-from-hackers
cyber security

Microsoft gobbles up corp.com domain to keep it from hackers

8 Apr 2020
Visit/software/video-conferencing/355257/taiwan-first-country-to-ban-zoom-amid-security-concerns
video conferencing

Taiwan becomes first country to ban Zoom amid security concerns

8 Apr 2020