Update for iniNet’s SCADA Webserver

Thursday, September 21, 2017 @ 04:09 PM gHale

Switzerland-based iniNet Solutions GmbH released new software to mitigate an improper authentication vulnerability in its SCADA Webserver, according to a report with ICS-CERT.

A third-party web-based server software, all versions prior to V2.02.0100 of iniNet Webserver suffer from the remotely exploitable vulnerability, discovered by Matthias Niedermaier and Florian Fischer of Augsburg University of Applied Sciences.

Saia Burgess Fixes PCD Controllers
Fix is in for mGuard Device Manager
LOYTEC Mitigates Multiple HMI Holes
Philips Addresses Patient Worn Monitor Holes

Successful exploitation of this vulnerability could allow malicious users to access human-machine interface (HMI) pages or to modify programmable logic controller (PLC) variables without authentication.

No known public exploits specifically target this vulnerability. However, an attacker with low skill level could leverage the vulnerability.

In the vulnerability, the webserver does not properly authenticate users, which may allow a malicious attacker to access sensitive information such as HMI pages or modify PLC variables.

CVE-2017-13995 is the case number assigned to this vulnerability, which has a CVSS v3 base score of 10.0.

The product sees action mainly in the critical manufacturing sector. It also sees use on a global basis.

IniNet Solutions GmbH released a new version of the SCADA Webserver, V2.02.0100, which allows users to implement basic authentication.

Instructions for implementing basic authentication can be found in the user manual for V2.02.0100.

IniNet Solutions GmbH said the webserver is designed to be used in a protected environment.

As a third-party software, the iniNet Webserver is used in many different vendors’ products. Asset owners should determine if they are using a vulnerable version of the iniNet Webserver and follow the recommended practices below.

IniNet Solutions GmbH recommends users never connect PLCs to the Internet. If a user must connect to the Internet, IniNet Solutions GmbH recommends using a managed infrastructure to do so.

Leave a Reply

You must be logged in to post a comment.