Siemens TeleControl Server Basic Improper Length Validation Vulnerability Leading to Denial-of-Service

A denial-of-service vulnerability has been identified in Siemens TeleControl Server Basic, all versions prior to V3.1.2.2. The issue arises because the application fails to properly validate a length field in serialized messages, which is used to determine how much memory should be allocated for deserialization. This flaw could enable an unauthenticated remote attacker to cause excessive memory allocation, creating a partial denial-of-service condition. Successful exploitation is possible only in redundant TeleControl Server Basic setups, and only if the connection between the redundant servers has been disrupted.

Impact

Exploitation of this vulnerability can lead to excessive memory consumption, causing a partial denial-of-service condition on the affected system.

Remediation

Users are advised to update Siemens TeleControl Server Basic to version V3.1.2.2 or later. If redundancy is not needed, Telecontrol Server Basic redundancy can be disabled to mitigate the risk.