Remote Code Execution Vulnerability in Siemens CP 1604 and CP 1616 Interface Cards
CVE-2013-0659

Currently unrated

Key Information:

Vendor: Siemens
Status: Cp 1604 Firmware; Cp 1616 Firmware; Cp 1616; Cp 1604
Vendor: CVE Published:; 1 April 2013

Summary

The Siemens CP 1604 and CP 1616 interface cards contain a vulnerability in their debugging feature which could be exploited by remote attackers. By sending specially crafted packets to UDP port 17185, an attacker may gain the ability to execute arbitrary code on the affected devices. This poses a significant risk to network integrity and functionality, highlighting the need for vigilance and prompt updates to firmware versions.

References

http://www.siemens.com/corporate-technology/pool/de/forsc...

x_refsource_CONFIRM

http://ics-cert.us-cert.gov/pdf/ICSA-13-084-01.pdf

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 1, 2013