How to deal with the effects of CVE

Similar documents
How to Apply MS17-10 to prevent WannaCrypt Attacks

How to Apply MS17-10 to prevent WannaCrypt Attacks

R&S RTC1002 Digital Oscilloscope Release Notes Firmware Version

R&S ESU EMI Test Receiver. Release Notes. Firmware Version V5.74 SP1. Only an ESU with Windows 7 Operating System is supported

R&S GNSS Test Automation Release Notes Software Version 1.3.2

R&S ESR EMI Test Receiver Release Notes Firmware Version V3.36 SP2

R&S RTA4000 Digital Oscilloscope Release Notes Firmware Version

R&S ELEKTRA Release Notes Software Version V2.10

R&S AVG Pattern Import Release Notes Firmware Version 02.25

R&S RECAL + Release Notes Software Version 4.01

Firmware Release V1.83 SP3

R&S ESW Test Receiver Release Notes Firmware Version V1.40 SP1

R&S NRP-Z51/-Z52/-Z55/-Z56/- Z57/-Z58 Thermal Power Sensors Release Notes

R&S SGT100A RF Source Base Unit Release Notes FW Version

R&S TSMAx Release Notes Firmware Version

R&S Broadcast Drive Test Release Notes Software Version 03.13

R&S Pulse Sequencer DFS Software Release Notes Software Version 1.6

R&S Spectrum Rider FPH Release Notes Firmware Version V1.50

R&S Spectrum Rider FPH Release Notes Firmware Version V1.40

R&S CMW Bluetooth Release Notes Software Version V3.2.70

R&S Pulse Sequencer DFS Software Release Notes Software Version 1.7

R&S SMB100B Release Notes Firmware Version

R&S VISA Release Notes Software Version 5.8.6

R&S TSMA Release Notes Firmware Version

R&S RTO and R&S RTE Oscilloscopes Release Notes Firmware Version

R&S ELEKTRA EMC Test Software Swift and reliable measurement of electromagnetic disturbances

R&S DSA DOCSIS Signal Analyzer Release Notes Firmware Version 2.2.1

BitLocker White Paper Windows 10

Resolving Security Issues When Working with the R&S ESIB in Secure Areas

R&S RTB2000 Oscilloscope Release Notes Firmware Version

TopSec Mobile Secure voice encryption for smartphones and laptops

R&S Power Meter NRP Release Notes Firmware Version

R&S SMA100B Release Notes Firmware Version

Firmware Version Build 170 SP1

R&S DigIConf Software Release Notes Firmware Version Build 170 SP1

Release Notes. R&S FSC Spectrum Analyzer

R&S FSL Spectrum Analyzer Resolving Security Issues When Working in Secure Areas

R&S AVBrun Sequencer Software. Release Notes. Firmware Version Release Notes. Broadcasting

R&S QuickStep Test Executive Software Flexibility and excellent performance

LabVIEW driver history for the R&S HMC8012 Driver Documentation

Uploading Files to CMS

R&S LXI Class C Support V1.21 (XP)

R&S MSD Modular System Device Flexible antenna switching and rotator control

Release Notes. R&S ES-SCAN EMI Measurement Software

R&S NRPV Virtual Power Meter Release Notes Application Version 3.2

Fairfield University Using Xythos for File Storage

Welcome to the CP Portal

Sending s without the risk! The Rohde & Schwarz Secure Web Interface

R&S SpycerBox Ultra TL Spec Sheet

R&S FSVA and R&S FSV Signal and Spectrum Analyzer Release Notes Firmware Version V3.40

Job Aid. Remote Access BAIRS Printing and Saving a Report. Table of Contents

R&S CMW500 CDMA2000 1XRTT and 1xEV-DO Release Notes Software Version

Replacing R&S CMU200 with R&S CMW500 in 2G and 3G Speech Test Applications Application Note

R&S NRP-Z27/-Z37 Power Sensor Module Release Notes Firmware Version 04.18a

R&S WinIQSIM2 Simulation Software Release Notes Firmware Version

Discovering Computers & Microsoft Office Office 2010 and Windows 7: Essential Concepts and Skills

Chancellor s Office Information Technology Services Corporate Information Management FIRMS Budget Review Hyperion Process

The following instructions cover how to edit an existing report in IBM Cognos Analytics.

Release Notes. Revision: 01. R&S FSH4/FSH8/FSH13/FSH20 Handheld Spectrum Analyzer. Firmware Release 2.40

Procedure to Flash Upgrade the TLink TL250/TL300

Navigate to Cognos Cognos Analytics supports all browsers with the exception of Microsoft Edge.

Release Notes Revision: 01

Manage Files. Accessing Manage Files

R&S CLIPSTER Mastering excellence.

Quick Reference Guide Hosting WebEx Meetings

TopSec Product Family Voice encryption at the highest security level

Voice Quality Measurements with R&S ROMES. Application Note

FenStar Document Management User Manual

CREATE AN EKTRON MICRO-SITE

Installation Instructions for Free Scheduler Plus Software IBS Show Promotion

TIBCO Slingshot User Guide. Software Release August 2015

Joomla 2.5 Kunena Component Installation

Step 1: Use StudyMate to Publish files

umapps Using umapps 6/14/2017 Brought to you by: umtech & The Center for Teaching & Learning

From the Insert Tab (1), highlight Picture (2) drop down and finally choose From Computer to insert a new image

SharePoint 2010 Instructions for Users

Widgets for SAP BusinessObjects Business Intelligence Platform User Guide SAP BusinessObjects Business Intelligence platform 4.1 Support Package 2

R&S InstrumentView Spectrum Analyzer Software Manual

R&S DVMS DTV Monitoring System Release Notes Firmware Version

Beginner s Guide to ACD5

.NET programming interface for R&S GTSL and R&S EGTSL

ESM Security Response Policies Release Notes. Nimda response policy for Windows NT and Windows 2000

R&S VSE Vector Signal Explorer Release Notes Firmware Version V1.40

Navigate to Cognos Cognos Analytics supports all browsers with the exception of Microsoft Edge.

Appserv Internal Desktop Access Mac OS Device with Safari Browser. Enter your Appserv username and password to sign in to the Website

DATACARD Firmware Update Instructions. Contents. Firmware Update Application for Windows 98SE Operating Systems. What You Need

Print Station. Point-and-Click Printing WHITE PAPER

PGP Portable Quick Start Guide Version 10.3

TIBCO MFT Internet Server Desktop Client. Software Release September 2014

Upgrading Workstations To Maximizer CRM Summer 2013

ESM Release Notes. ISO standard-based best practice policy for Solaris 2.6, 7, and 8 operating systems

EA/Studio Installation Guide

For additional information, please consult the Read-Me and Help documentation or contact Electro-Voice or Dynacord technical support.

User Manual For SmartRoom Managers

About Symantec Encryption Management Server

What s New in Cognos. Cognos Analytics Participant s Guide

PST for Outlook Admin Guide

Using this tutorial, you will create a Web page for a fictional foundation. The tutorial is divided into the following parts:

Windows 8.1 User Guide for ANU Staff

Desktop & Laptop Edition

Transcription:

How to deal with the effects of CVE-2018-0886 Restore Remote Access to R&S instruments V 2.10 Document date: 26.06.2018 This document describes possible ways to access R&S instruments after the security vulnerability CVE- 2018-0886 is patched on your host PC but not on the R&S instrument or vice versa. It is important to mention that the access procedure changes for the remote desktop if the client side has the current patches installed (see section 2 for details). Please refer to the Microsoft article for more details in regards to the vulnerability: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2018-0886 Inhalt 1 Check Applicable Instruments... 2 2 Changes When Using Remote Desktop... 3 3 Remote Access to R&S Instruments (Web or VNC)... 4 3.1 Instruments with Web control... 4 3.1.1 To access the R&S instrument via the web browser interface... 4 3.1.2 To exchange files with the R&S instrument... 4 3.2 Instruments without Web control... 5 3.2.1 Operation with a VNC Client... 5 4 WSUS on your R&S instrument... 7 4.1 Windows 7... 7 4.2 Windows 8... 7 4.3 Windows 10... 7 5 Customer Support... 8 1

1 Check Applicable Instruments The following table shows an overview of affected instruments and the possible operating systems. Device Windows Embedded 7 SP1 32-bit Windows Embedded 7 SP1 64-bit Windows 8 32-bit Windows 10 IoT Enterprise LTSB ETL ESR ESRP ESW FPL1000 FPS FSV FSVA FSVR FSW FSWT FSWP When getting remote access to the above listed instruments, no action is required if: - You are using VNC to access your device. See chapter 2 on how to use VNC on applicable devices. - You are not using remote desktop to access your device. 2

2 Changes When Using Remote Desktop The Login behavior changes slightly when connecting to an R&S instrument in case the patch was installed on your PC. The following instructions guide you step by step on how to use Microsoft remote desktop with the R&S instrument. The changes are highlighted in red. 1. Select the "Windows" icon in the toolbar to access the operating system. 2. Locate the Remote Desktop Connection link in the "Start" menu. The "Remote Desktop Connection" dialog box is displayed. 3. Select the "Options >>" button. The dialog box is expanded to display the configuration data. 4. In the "Computer" field, enter the IP address of the R&S Instrument. In the "User name" field, enter \instrument to log in as an administrator, or \Normal User to log in as a standard user. The previous login mechanism did not require the \ at the beginning of the User name. Please note that the \ must be entered only once at the first access to the client instrument after the patch was installed. On subsequent remote access attempts it can be omitted. Click Connect to start the connection and enter 894129 in the password field when prompted to enter the password. 3

3 Remote Access to R&S Instruments (Web or VNC) Device Web Control available VNC available ETL 1 ESR 2 ESRP 2 ESW FPL1000 FPS FSV 2 FSVA 2 FSVR 2 FSW FSWT FSWP 3.1 Instruments with Web control Via the LI browser interface to the R&S instrument one or more users can control the instrument remotely from another PC without additional installation. Most instrument controls are available via the front panel simulation. File upload and download between the instrument and the remote PC is also available. 3.1.1 To access the R&S instrument via the web browser interface 1. Start a web browser that supports html5 (W3C compliant). 2. Enter the IP address of the R&S instrument in the browser's address bar. The R&S instrument's Welcome page is displayed. 3. In the navigation pane, select "Instrument Control > Web Control". The instrument's display is shown in a new browser window, with a software front panel displayed beside or below it. 4. Use the mouse cursor to access the functionality in the software front panel or in the display as you would directly on the instrument's front panel. 3.1.2 To exchange files with the R&S instrument You can download files, for example stored measurement data, from the R&S instrument to the remote PC, or upload files, for example limit line definitions, from the PC to the R&S instrument. 1. In the web browser, select the Welcome page window. 2. In the navigation pane, select "Instrument Control" > "File Upload" or "File Download". 1 Not preinstalled, but can be installed when required (Windows 8) 2 Preinstalled for instruments with Windows 7 and Windows 10 4

The most commonly used folders on the instrument are displayed, for example those that contain user data, as well as the top-most My Computer folder, from which you can access all other folders on the instrument. 3. To download a file from the R&S instrument, select the file from the displayed folders and then select "Download File". 4. To upload a file to the R&S instrument: a) From the displayed folders in the web browser window, select the folder on the R&S instrument to which you want to copy a file. b) Under "File to Upload", select "Browse" to open a file selection dialog box and select the required file on the PC. c) Select "Upload" to copy the file from the PC to the defined folder on the R&S instrument. 3.2 Instruments without Web control 3.2.1 Operation with a VNC Client Virtual Network Computing (VNC) allows you to control the R&S instrument (the VNC server) from a remote computer (the VNC client), for example to monitor the instruments in a production line. The handling of a VNC system is similar to using the Windows Remote Desktop, but VNC has some advantages compared to the Remote Desktop. You can view the contents of the instrument display on more than one client. VNC clients are available for many operating systems. Thus, a VNC is independent of the platform you are using. You can still control the instrument itself when a remote connection has been established, and see what is happening on both the instrument display and the client. With the display running, you can also change settings both on the instrument and with the client simultaneously. (Using the Remote Desktop turns off the display and viewing the display contents is only possible on the controlling computer.) 5

The complete mini soft front panel is available on the client ("Alt-M" opens the mini soft front panel). Monitoring real time measurements is possible with the VNC client (this does not work with the Remote Desktop). All listed instruments support a VNC and are delivered with a version of the TightVNC software. On the client side, you can use a web browser or a VNC client to access the instrument. 3.2.1.1 Using a web browser If you are using a web browser (for example Microsoft Internet Explorer), enter the IP address of the instrument and the port you are using for the connection into the address bar to establish a connection (for example "192.0.2.0:5800"). The browser then opens an interface that allows you to control the instrument after you have entered the password. The default port is 5800 and the default password is 894129, but you can change this on the VNC software that comes with the instrument if required. Note that using a browser requires you to install Java in order to run properly. 3.2.1.2 Using a VNC client Alternatively, you can install a VNC client on your computer (for example a program like TightVNC) and use that to access the instrument. In that case, start the client and enter the IP address of the instrument to establish a connection. 6

4 WSUS on your R&S instrument The following white papers describe how to install Windows updates on R&S instruments: 4.1 Windows 7 1DC01: Malware Protection II White Paper Windows 7 4.2 Windows 8 1EB01: Malware Protection Windows 8 4.3 Windows 10 1EF96: Malware Protection Windows 10 7

5 Customer Support Technical support where and when you need it For quick, expert help with any Rohde & Schwarz equipment, contact one of our Customer Support Centers. A team of highly qualified engineers provides telephone support and will work with you to find a solution to your query on any aspect of the operation, programming or applications of Rohde & Schwarz equipment. Up-to-date information and upgrades To keep your instrument up-to-date and to be informed about new application notes related to your instrument, please send an e-mail to the Customer Support Center stating your instrument and your wish. We will take care that you will get the right information. Europe, Africa, Middle East Phone +49 89 4129 12345 customersupport@rohde-schwarz.com North America Phone 1-888-TEST-RSA (1-888-837-8772) customer.support@rsa.rohde-schwarz.com Latin America Phone +1-410-910-7988 customersupport.la@rohde-schwarz.com Asia/Pacific Phone +65 65 13 04 88 customersupport.asia@rohde-schwarz.com China Phone +86-800-810-8828 / +86-400-650-5896 customersupport.china@rohde-schwarz.com 8

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback