¡¾²úÏ߸üС¿Schneider | ¶à¸öÇå¾²Îó²îͨ¸æ

Ðû²¼Ê±¼ä 2020-05-13

0x00 Îó²î¸ÅÊö



²úÆ·

CVE ID

Àà ÐÍ

Îó²îÆ·¼¶

Ô¶³ÌʹÓÃ

Ó°Ïì¹æÄ£

Schneider Electric²úÆ·

CVE-2020-7475

I

ÑÏÖØ

ÊÇ

EcoStruxure Control Expert 14.1 Hot Fix֮ǰ°æ±¾£»£»£»£»£»Unity Pro£¨ËùÓа汾£©£»£»£»£»£»Modicon M340 V3.20֮ǰ°æ±¾£»£»£»£»£»Modicon M580 V3.10֮ǰ°æ±¾

CVE-2020-7489

I

ÑÏÖØ

ÊÇ

SchneiderElectric EcoStruxure Machine Expert ¨C Basic»òSoMachine Basic


0x01 Îó²îÏêÇé


ÈËÉú¾ÍÊDz©-×ðÁú¿­Ê±Öйú¹ÙÍø


Ê©Ä͵µçÆø¹«Ë¾ÊÇÈ«ÇòÄÜЧÖÎÀíÁìÓòµÄÏòµ¼Õß £¬£¬£¬£¬ £¬£¬Îª100¶à¸ö¹ú¼ÒµÄÄÜÔ´¼°»ù´¡ÉèÊ©¡¢¹¤Òµ¡¢Êý¾ÝÖÐÐļ°ÍøÂ硢¥ÓîºÍסլÊг¡ÌṩÕûÌå½â¾ö¼Æ»®¡£¡£¡£¡£¡£Schneider Electric Modicon M580µÈ¶¼ÊǸù«Ë¾µÄ²úÆ·¡£¡£¡£¡£¡£

×î½ü £¬£¬£¬£¬ £¬£¬Ñо¿Ö°Ô±ÓÖ´ÓÊ©Ä͵µçÆøÈí¼þÖз¢Ã÷ÁËÒ»¸öÎó²î£¨CVE-2020-7489£© £¬£¬£¬£¬ £¬£¬ËüÀàËÆÓÚÎÛÃûÕÑÖøµÄ¡°ÕðÍø¡±²¡¶¾(Stuxnet)¶ñÒâÈí¼þÔøʹÓõÄÎó²î¡£¡£¡£¡£¡£

Ê®¶àÄêÇ° £¬£¬£¬£¬ £¬£¬ÃÀ¹úºÍÒÔÉ«Áб»Ö¸Ê¹Óá°ÕðÍø¡±²¡¶¾Ëðº¦ÒÁÀʵĺËÍýÏë £¬£¬£¬£¬ £¬£¬Ä¿µÄÊÇÎ÷ÃÅ× SIMATIC S7-300ºÍS7-400¿É±à³ÌÂß¼­¿ØÖÆÆ÷(PLCs)¡£¡£¡£¡£¡£Õâ¿î¶ñÒâÈí¼þͨ¹ýÌæ»»½«ÓëÎ÷ÃÅ×Ó STEP7¿ØÖÆÆ÷±à³ÌÈí¼þÏà¹ØÁªµÄÒ»¸öDLLÎļþ £¬£¬£¬£¬ £¬£¬½«¶ñÒâ´úÂë¼ÓÔص½Ä¿µÄPLCsÉÏ¡£¡£¡£¡£¡£

2020Äê3ÔÂ·Ý £¬£¬£¬£¬ £¬£¬AirbusÍøÂçÇå¾²¹«Ë¾±¨µÀ³Æ´ÓÊ©Ä͵µçÆøµÄEcoStruxure ControlExpert¹¤³ÌÈí¼þ£¨´ËÇ°ÃûΪ Unity Pro£©Öз¢Ã÷ÁËÒ»¸öÀàËÆÎó²î CVE-2020-7475 £¬£¬£¬£¬ £¬£¬Ëü¿Éͨ¹ýÌæ»»Óë¸Ã¹¤³ÌÈí¼þÏà¹ØÁªµÄÆäÖÐÒ»¸öDLLÎļþ £¬£¬£¬£¬ £¬£¬½«¶ñÒâ´úÂëÉÏ´«µ½Modicon M340 ºÍM580 PLCsÖÐ £¬£¬£¬£¬ £¬£¬´Ó¶øÔì³ÉÀú³ÌÆÆËðºÍÆäËüË𺦡£¡£¡£¡£¡£CVE-2020-7475ÊǶà¿îSchneider Electric²úÆ·Öб£´æµÄ×¢ÈëÎó²î £¬£¬£¬£¬ £¬£¬¹¥»÷Õß¿ÉʹÓøÃÎó²îÏò¿ØÖÆÆ÷Öз¢ËͶñÒâ´úÂë¡£¡£¡£¡£¡£

2020Äê5ÔÂ7ÈÕ £¬£¬£¬£¬ £¬£¬ÍøÂçÇå¾²¹«Ë¾TrustwaveµÄÑо¿Ö°Ô±ÌåÏÖ £¬£¬£¬£¬ £¬£¬ËûÃÇÒ²´ÓÊ©Ä͵ÂÈí¼þ EcoStruxure MachineExpert£¨´ËÇ°ÃûΪSoMachine£©Öз¢Ã÷ÁËÒ»¸öÀàËÆÎó²î £¬£¬£¬£¬ £¬£¬¸ÃÎó²îΪ CVE-2020-7489 £¬£¬£¬£¬ £¬£¬¹¥»÷Õß¿ÉʹÓøÃÎó²î½«¶ñÒâ´úÂë´«Êäµ½¿ØÖÆÆ÷¡£¡£¡£¡£¡£


0x02 ²úÆ·¼Æ»®


ÈËÉú¾ÍÊDz©Ì쾵ųÈõÐÔɨÃèÓëÖÎÀíϵͳ-¹¤¿ØϵͳרÓðæV6.0ÓÚ2020Äê5ÔÂ13ÈÕÐû²¼Éý¼¶°ü £¬£¬£¬£¬ £¬£¬¿ÉÒÔ¶ÔÉÏÊöÎó²î¾ÙÐмì²â¡£¡£¡£¡£¡£½¨ÒéÓû§¾¡¿ìÉý¼¶Ì쾵©ɨ²úÆ·Îó²î¿âÖÁ6075°æ±¾ £¬£¬£¬£¬ £¬£¬ÏÂÔصص㣺https://venustech.download.venuscloud.cn/


ÈËÉú¾ÍÊDz©-×ðÁú¿­Ê±Öйú¹ÙÍø


0x03 ´¦Öóͷ£½¨Òé


ÏÖÔÚ³§ÉÌÒÑÐû²¼Éý¼¶²¹¶¡ÒÔÐÞ¸´Îó²î £¬£¬£¬£¬ £¬£¬²¹¶¡»ñÈ¡Á´½Ó£º

https://www.se.com/ww/en/download/document/SEVD-2020-080-01/

https://www.se.com/ww/en/download/document/SEVD-2020-105-01/


0x04 Ïà¹ØÐÂÎÅ


https://www.securityweek.com/another-stuxnet-style-vulnerability-found-schneider-electric-software


0x05 ²Î¿¼Á´½Ó


http://www.se.com/ww/en/download/document/SEVD-2020-080-01

https://www.se.com/ww/en/download/document/SEVD-2020-105-01


0x06 ʱ¼äÏß


2020-05-08 VSRCÐû²¼Îó²îͨ¸æ

2020-05-13 Ìì¾µ¹¤¿Ø©ɨ¸üÐÂ


ÈËÉú¾ÍÊDz©-×ðÁú¿­Ê±Öйú¹ÙÍø