Authentication Bypass Vulnerability in Siemens Scalance S Security Module Firewall
CVE-2012-1799

Currently unrated

Key Information:

Vendor
Siemens
Status
Scalance S Firmware
Scalance S602
Scalance S612
Scalance S613
Vendor
CVE Published:
18 April 2012

Summary

The web server on Siemens Scalance S602 V2, S612 V2, and S613 V2 models with firmware versions prior to 2.3.0.3 is susceptible to an authentication vulnerability. This flaw allows remote attackers to exploit the system by performing unlimited authentication attempts, thus increasing the likelihood of a successful brute-force attack on the administrative password, potentially granting unauthorized access to sensitive configuration settings.

References

http://support.automation.siemens.com/WW/view/en/59869684
x_refsource_CONFIRM
http://osvdb.org/81033
vdb-entryx_refsource_OSVDB
http://www.siemens.com/corporate-technology/pool/de/forsc...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.