| CVE編號 | CVE-2015-1594 |
|---|---|
| 解決辦法 | 請參考相關修正資訊連結進行更新 |
| 張貼日 | 2015-04-24 |
| 上稿單位 | TWCERT/CC |
此漏洞可能允許攻擊者從本地端檔案系統上的文件等受影響的產品執行任意程式碼。
影響產品:
•SIMATIC ProSave: all versions prior to V13 SP1 •SIMOTION Scout: all versions prior to V4.4 •STARTER: all versions prior to V4.4 HF3 •SIMATIC CFC •All versions prior to V8.0 SP4 •CFC V8.0 SP4: all versions prior to V8.0 SP4 Upd 9 •CFC V8.1: all versions prior to V8.1 Upd1 • SIMATIC STEP 7 V5.5 •All versions prior to V5.5 SP1 •STEP 7 V5.5 SP1: all versions prior to V5.5 SP1 HF2 •STEP 7 V5.5 SP2: all versions prior to V5.5 SP2 HF7 •STEP 7 V5.5 SP3: all versions prior to V5.5 SP3 HF10 •STEP 7 V5.5 SP4: all versions prior to V5.5 SP4 HF4 •SIMATIC PCS 7 (as STEP 7 and CFC are incorporated) •All versions prior to V8.0 SP2 •PCS 7 V8.0 SP2: all versions prior to V8.0 SP2 with STEP 7 V5.5 SP3 HF10 and CFC V8.0 SP4 Upd9 •PCS 7 V8.1: all versions prior to V8.1 with STEP 7 SP4 HF4 and CFC V8.1 Upd1.