Denial of Service Vulnerability in Siemens SCALANCE X-300 and X-408 Switches
CVE-2014-8478

Currently unrated

Key Information:

Vendor: Siemens
Status: Scalance X-300 Series Firmware
Vendor: CVE Published:; 21 January 2015

Summary

An issue exists in the web server of Siemens SCALANCE X-300 and X-408 switches that allows remote attackers to induce a denial of service condition, resulting in the reboot of the switches. This vulnerability arises from the handling of malformed HTTP requests, enabling attackers to disrupt network services.

References

http://www.siemens.com/innovation/pool/de/forschungsfelde...

x_refsource_CONFIRM

https://cert-portal.siemens.com/productcert/pdf/ssa-32104...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jan 21, 2015
Vulnerability Reserved
Oct 24, 2014