Siemens RuggedCom ROS和ROX设备信息泄露

Basic Fields

SSV ID:
SSV-89505
Find Time:
2015-08-02
Submit Time:
2015-09-22
Level:
Category:
信息泄漏
Component:
Siemens RuggedCom
(<4.2.0)
Author:
Unknown
Submitter:
ppprince
CVE-ID:
CVE-2015-5537
CNNVD-ID:
CNNVD-201507-740
CNVD-ID:
Add
ZoomEye Dork:
Add

Source

Detail

Unavailable Detail

PoC

Unavailable PoC

Reference Linking

Solutions

Temp Solutions

Unavailable Temp Solutions

Official Solution

Defense Solutions

Unavailable Defense Solutions

Popularity 3249
Need to bind phone before comment. Bind Now

All Comments (1)

  • 西门子正在为 ROX 设备修复提供固件更新 v4.2.0。 同时,西门子建议采取以下步骤来缓解的风险: ·禁用上ROX II 的 web 界面和使用SSH 命令行界面 ·限制对 web 接口 (TCP/端口 443) 在受信任的网络中的客户端的访问 ·当前web 会话处于活动状态时使之无法访问外部 web 界面
    1F

※Any content provided by this site, only to learn the code and services, not for illegal purposes