Phoenix Contact Clears FL SWITCH Holes

Thursday, January 11, 2018 @ 05:01 PM gHale


Phoenix Contact has new firmware to mitigate improper authorization and information exposure vulnerabilities in its FL SWITCH product, according to a report with ICS-CERT.

All FL SWITCH 3xxx, 4xxx, and 48xxx Series products running firmware Version 1.0 to 1.32 suffer from the remotely exploitable vulnerabilities discovered by Ilya Karpov and Evgeniy Druzhinin of Positive Technologies.

RELATED STORIES
Rockwell Clears MicroLogix Controller Hole
GM, Shanghai OnStar Fix iOS Client
Advantech Clears WebAccess Holes
Delta Electronics Fixes GUI

Successful exploitation of these vulnerabilities may allow an unauthenticated remote attacker to gain administrative privileges and expose information to unauthenticated users.

No known public exploits specifically target these vulnerabilities. However, an attacker with low skill level could leverage the vulnerabilities.

A remote unauthenticated attacker may be able to craft special HTTP requests allowing an attacker to bypass web-service authentication allowing the attacker to obtain administrative privileges on the device.

CVE-2017-16743 is the case number assigned to this vulnerability, which has a CVSS v3 base score of 9.8.

In addition, a remote unauthenticated attacker may be able to use Monitor Mode on the device to read diagnostic information.

CVE-2017-16741 is the case number assigned to this vulnerability, which has a CVSS v3 base score of 5.3.

The products see use mainly in the communications, critical manufacturing and information technology sectors. They also see action on a global basis.

Phoenix Contact recommended affected users upgrade to firmware Version 1.33 or higher. The updated firmware may be downloaded from the following locations:
FL SWITCH 3005
FL SWITCH 3005T
FL SWITCH 3004T-FX
FL SWITCH 3004T-FX ST
FL SWITCH 3008
FL SWITCH 3008T
FL SWITCH 3006T-2FX
FL SWITCH 3006T-2FX ST
FL SWITCH 3012E-2SFX
FL SWITCH 3016E
FL SWITCH 3016
FL SWITCH 3016T
FL SWITCH 3006T-2FX SM
FL SWITCH 4008T-2SFP
FL SWITCH 4008T-2GT-4FX SM
FL SWITCH 4008T-2GT-3FX SM
FL SWITCH 4808E-16FX LC-4GC
FL SWITCH 4808E-16FX SM-4GC
FL SWITCH 4808E-16FX SM ST-4GC
FL SWITCH 4808E-16FX ST-4GC
FL SWITCH 4808E-16FX-4GC
FL SWITCH 4808E-16FX SM LC-4GC
FL SWITCH 4012T 2GT 2FX
FL SWITCH 4012T-2GT-2FX ST
FL SWITCH 4824E-4GC
FL SWITCH 4800E-24FX-4GC
FL SWITCH 4800E-24FX SM-4GC
FL SWITCH 4800E-24FX SM-4GC
FL SWITCH 3012E-2FX SM
FL SWITCH 4000T-8POE-2SFP-R



Leave a Reply

You must be logged in to post a comment.