Multiple File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.2
Plan Patch7.8SSA-483182Jul 13, 2021
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary
Multiple file parsing vulnerabilities exist in JT2Go and Teamcenter Visualization versions before V13.2. These flaws are triggered when the products read files in GIF, TIFF, BMP, J2K, JT, SGI, PDF, PCT, PCX, PAR, and ASM formats. The vulnerabilities include buffer overflows, out-of-bounds reads, use-after-free, and integer overflow conditions (CWE-787, CWE-125, CWE-416, CWE-126, CWE-119, CWE-122, CWE-835, CWE-415). A user tricked into opening a malicious file could experience application crash or arbitrary code execution on the target system.
What this means
What could happen
A user tricked into opening a malicious file in JT2Go or Teamcenter Visualization could trigger a memory corruption vulnerability that causes the application to crash or allows an attacker to run arbitrary code on the workstation.
Who's at risk
Engineering teams and CAD/manufacturing personnel who use Siemens JT2Go or Teamcenter Visualization for design review, 3D model viewing, and product lifecycle management. This includes architects, engineers, and manufacturing planners at any organization using Siemens digital manufacturing tools.
How it could be exploited
An attacker crafts a malicious file in one of the supported formats (GIF, TIFF, BMP, J2K, JT, SGI, PDF, PCT, PCX, PAR, ASM) and tricks or socially engineers a user into opening it with JT2Go or Teamcenter Visualization. The file parsing code contains buffer overflows and use-after-free flaws that execute arbitrary code when processed.
Prerequisites
- User must open a malicious file with JT2Go or Teamcenter Visualization
- File must be in one of the vulnerable formats: GIF, TIFF, BMP, J2K, JT, SGI, PDF, PCT, PCX, PAR, ASM
user interaction requiredaffects engineering workstationsmemory corruption vulnerabilitiesmultiple file format support increases attack surfacelow exploit complexity
Exploitability
Low exploit probability (EPSS 0.5%)
Affected products (2)
2 with fix
ProductAffected VersionsFix Status
JT2Go< V13.213.2
Teamcenter Visualization< V13.213.2
Remediation & Mitigation
0/4
Do now
0/2HARDENINGEducate users to avoid opening files from unknown or untrusted sources in these products
HARDENINGDisable file open prompts for untrusted email attachments or downloaded files where possible
Schedule — requires maintenance window
0/2Patching may require device reboot — plan for process interruption
JT2Go
HOTFIXUpdate JT2Go to version 13.2 or later
Teamcenter Visualization
HOTFIXUpdate Teamcenter Visualization to version 13.2 or later
CVEs (43)
CVE-2021-34325CVE-2021-34326CVE-2021-34327CVE-2021-34330CVE-2021-34331CVE-2021-34332CVE-2021-34333CVE-2021-34291CVE-2021-34292CVE-2021-34293CVE-2021-34294CVE-2021-34295CVE-2021-34296CVE-2021-34297CVE-2021-34298CVE-2021-34299CVE-2021-34300CVE-2021-34301CVE-2021-34302CVE-2021-34303CVE-2021-34304CVE-2021-34305CVE-2021-34306CVE-2021-34307CVE-2021-34308CVE-2021-34309CVE-2021-34310CVE-2021-34311CVE-2021-34312CVE-2021-34313CVE-2021-34314CVE-2021-34315CVE-2021-34316CVE-2021-34317CVE-2021-34318CVE-2021-34319CVE-2021-34320CVE-2021-34321CVE-2021-34322CVE-2021-34323CVE-2021-34324CVE-2021-34328CVE-2021-34329
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/fc2ea8cc-849d-44cd-bc39-43126b95adbc