CVE-2015-5537

The SSL layer of the HTTPS service in Siemens RuggedCom ROS before 4.2.0 and ROX II does not properly implement CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a different vulnerability than CVE-2014-3566.

Weakness

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

Affected Software

Name	Vendor	Start Version	End Version
Ruggedcom_rox_ii_firmware	Siemens	- (including)	- (including)
Ruggedcom_rugged_operating_system	Siemens	*	4.2.0 (excluding)

Potential Mitigations

https://cwe.mitre.org/data/definitions/37.html

References

http://www.securitytracker.com/id/1033022
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-396873.pdf
https://ics-cert.us-cert.gov/advisories/ICSA-15-202-03A
http://www.securitytracker.com/id/1033022
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-396873.pdf
https://ics-cert.us-cert.gov/advisories/ICSA-15-202-03A

NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-5537
CWE	https://cwe.mitre.org/data/definitions/312.html

Cleartext Storage of Sensitive Information

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References