ÂÞ¿ËΤ¶û×Ô¶¯»¯¹¤ÒµµçÄܱíÑϳÁ·ì϶°²È«¹«¸æ

°ä²¼¹¦·ò 2019-02-22

·ì϶±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2019-19615£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ6.1£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2019-19616£¬Î£ÏÕ¼¶±ð£ºÑϳÁ£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ9.8£¬¹Ù·½Î´ÆÀ¶¨


Ó°Ïì°æ±¾


ÂÞ¿ËΤ¶û Allen-Bradley PowerMonitor 1000ËùÓа汾


·ì϶¸ÅÊö


PowerMonitor 1000ÊÇÒ»ÖÖÓÃÓÚ¹¤Òµ½ÚÔìÀûÓõĵçÄܼÆÁ¿É豸£¬Èç·ÅµçÖÐÐÄ£¬¹¤Òµ½ÚÔìÃæ°åºÍµç»ú½ÚÔìÖÐÐÄ¡£Ëü¿ÉÕÉÁ¿µç·ÖеĵçѹºÍµçÁ÷£¬²¢Í¨¹ýÒÔÌ«Íø»ò´®ÐÐÍøÂ罫µçÔ´ºÍÄÜÔ´²ÎÊý´«Ë͸øFactoryTalk EnergyMetrixTM£¬SCADAϵͳºÍ¿É±à³Ì½ÚÔìÆ÷µÅצÓá£


CVE-2019-19615£¬Ò»¸ö¿çÕ¾¾ç±¾·ì϶£¬Äܹ»ÈÃÔ¶³Ì¹¥»÷Õß½«ËÁÒâ´úÂë×¢ÈëÖ¸±êÓû§µÄWebä¯ÀÀÆ÷ÒÔ»ñÈ¡¶ÔÊÜÓ°ÏìÉ豸µÄ½Ó¼ûȨÏÞ¡£


CVE-2019-19616£¬Ò»ÖÖÉí·ÝÑéÖ¤Èƹý£¬Äܹ»ÔÊÐíÔ¶³Ì¹¥»÷ÕßʹÓôúÀíÀ´ÆôÓÃͨ³£¶ÔÓµÓÐWebÀûÓ÷¨Ê½ÖÎÀíȨÏÞµÄÈËÔ±¿ÉÓõÄÖ°ÄÜ¡£ÈƹýÉí·ÝÑéÖ¤ºó£¬¹¥»÷ÕßÄܹ»¸ü¸ÄÓû§ÉèÖúÍÉ豸ÅäÖá£


GA»Æ½ð¼×¡¤(ÖйúÇø)¹Ù·½ÍøÕ¾


·ì϶ÑéÖ¤


POC£º

ACSIµÄLuca Chiou£¬ÔÚNCCIC£¨¹ú¶ÈÍøÂ簲ȫºÍͨѶ¼¯³ÉÖÐÐÄ£©Öз¢ÏÖ²¢»ã±¨ÕâÁ½¸ö·ì϶£¬Í¬Ê±Ò²°ä²¼ÁËÕë¶ÔÕâÁ½¸ö·ì϶µÄPOC


https://www.exploit-db.com/exploits/45928

https://www.exploit-db.com/exploits/45937


½¨¸´½¨Òé


Ä¿Ç°»¹Ã»ÓÐÕë¶ÔÕâЩȱµãµÄ¿ÉÓý¨¸´·¨Ê½¡£¹Ø×¢¹ÙÍøÍøÕ¾µÄ¸üУº

https://rockwellautomation.custhelp.com/app/answers/detail/a_id/1084790


²Î¿¼Á´½Ó


https://ics-cert.us-cert.gov/advisories/ICSA-19-050-04