Lucene search

IcscertCVELIST:CVE-2012-3034

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-3034

2022-10-0316:15:22

icscert

www.cve.org

cve-2012-3034

webnavigator

siemens wincc

simatic pcs7

activex controls

6.8 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.6%

JSON

WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to discover a username and password via crafted parameters to unspecified methods in ActiveX controls.

References

en.securitylab.ru/lab/PT-2012-45

www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf

www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf