| Article No° | Product Name | Affected Version(s) |
|---|---|---|
| 70118644 | ICE2-8IOL1-G65L-V1D | <= 1.6.50 |
| 70104877 | ICE2-8IOL-G65L-V1D | <= 1.6.50 |
| 70108831 | ICE2-8IOL-K45P-RJ45 | <= 1.6.50 |
| 70104879 | ICE2-8IOL-K45S-RJ45 | <= 1.6.50 |
| 70118645 | ICE3-8IOL1-G65L-V1D | <= 1.6.50 |
| 70104876 | ICE3-8IOL-G65L-V1D | <= 1.6.50 |
| 70133474 | ICE3-8IOL-G65L-V1D-Y | <= 1.6.50 |
| 70108832 | ICE3-8IOL-K45P-RJ45 | <= 1.6.50 |
| 70104878 | ICE3-8IOL-K45S-RJ45 | <= 1.6.50 |
Critical vulnerabilities have been discovered in the product due to outdated software components.
The impact of the vulnerabilities on the affected device may result in
The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE.
The Diffie-Hellman Key Agreement Protocol allows use of long exponents that arguably make certain calculations unnecessarily expensive, because the 1996 van Oorschot and Wiener paper found that "(appropriately) short exponents" can be used when there are adequate subgroup constraints, and these short exponents can lead to less expensive calculations than for long exponents. This issue is different from CVE-2002-20001 because it is based on an observation about exponent size, rather than an observation about numbers that are not public keys. The specific situations in which calculation expense would constitute a server-side vulnerability depend on the protocol (e.g., TLS, SSH, or IKE) and the DHE implementation details. In general, there might be an availability concern because of server-side resource consumption from DHE modular-exponentiation calculations. Finally, it is possible for an attacker to exploit this vulnerability and CVE-2002-20001 together.
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack.
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
Pepperl+Fuchs analyzed and identified affected devices.
An attacker
Mitigation
External protective measures are required:
or:
Remediation
Pepperl+Fuchs will provide an update to address some of these vulnerabilities in the future.
CERT@VDE coordinated with Pepperl + Fuchs