Siemens LOGO! Soft Comfort Fixed

Wednesday, December 20, 2017 @ 09:12 AM gHale

Siemens has a fix for a download of code without integrity check in its LOGO! Soft Comfort product, according to a report with ICS-CERT.

An engineering software product, LOGO! Soft Comfort: All versions prior to V8.2 suffer from the remotely exploitable issue, discovered by Tobias Gebhardt who reported it to Siemens.

New Software Clears Ecava Issue
Fix for Pepperl+Fuchs/ecom instruments
WECON Software Fixes HMI Issue
Hole in Xiongmai IP Cameras, DVRs

Successful exploitation of this vulnerability could allow a remote attacker in a privileged network position to manipulate a software package during download.

No known public exploits specifically target this vulnerability. High skill level is needed to exploit.

The update center of LOGO! Soft Comfort lacks integrity verification on software packages downloaded via an unprotected communication channel. This could allow a remote attacker to manipulate the software package while performing a man-in-the-middle (MitM) attack.

CVE-2017-12740 is the case number assigned to this vulnerability, which has a CVSS v3 base score of 5.9.

The product sees action mainly in the commercial facilities and transportation systems sectors. It does see use on a global basis.

Siemens removed the Update Center from LOGO! Soft Comfort V8.2 and provides SHA-256 checksums for all LOGO! Soft Comfort software packages via a secured HTTPS channel. Siemens recommends verifying legitimacy by comparing the SHA-256 checksum of the downloaded software package with the SHA-256 checksum provided for the software package. Click here for software version 8.2 for LOGO! Soft Comfort and SHA-256 checksums for LOGO! Soft Comfort downloads.

As a general security measure, Siemens recommends protecting network access to the devices with appropriate mechanisms. Siemens advises configuring the environment according to Siemens operational guidelines in order to run the devices in a protected IT environment.

For more information on this vulnerability and more detailed mitigation instructions, click on Siemens Security Advisory SSA-888929.

Leave a Reply

You must be logged in to post a comment.