CVE-2012-1800

Currently unrated

Key Information:

Vendor: Siemens
Status: Scalance S Firmware; Scalance S602; Scalance S612; Scalance S613
Vendor: CVE Published:; 18 April 2012

Summary

Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 allows remote attackers to cause a denial of service (device outage) or possibly execute arbitrary code via a crafted DCP frame.

References

http://support.automation.siemens.com/WW/view/en/59869684

x_refsource_CONFIRM

http://www.siemens.com/corporate-technology/pool/de/forsc...

x_refsource_CONFIRM

http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-05...

x_refsource_MISC

Timeline

Vulnerability published
Apr 18, 2012
Vulnerability Reserved
Mar 21, 2012