Lucene search

Siemens SIMATIC S7-1200 Multiple DoS Vulnerabilities (SSA-724606)

Siemens SIMATIC S7-1200 Multiple DoS Vulnerabilities (SSA-724606). Prone to denial of service (DoS) vulnerabilities. Update to version 4.0.0 or later

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 13
ICS	Siemens SIMATIC S7-1200 Improper Input Validation Vulnerabilities	6 Sep 201812:00	–	ics
Tenable Nessus	Siemens SIMATIC S7-1200 CPU Family Denial of Service (CVE-2013-0700)	7 Feb 202200:00	–	nessus
Tenable Nessus	Siemens Simatic Improper Restriction of Operations within the Bounds of a Memory Buffer	8 Nov 201900:00	–	nessus
Tenable Nessus	Siemens Simatic Improper Restriction of Operations within the Bounds of a Memory Buffer	8 Nov 201900:00	–	nessus
Tenable Nessus	Siemens SIMATIC S7-1200 CPU Family Denial of Service (CVE-2013-2780)	7 Feb 202200:00	–	nessus
Cvelist	CVE-2013-0700	22 Apr 201301:00	–	cvelist
Cvelist	CVE-2013-2780	22 Apr 201301:00	–	cvelist
NVD	CVE-2013-0700	22 Apr 201303:27	–	nvd
NVD	CVE-2013-2780	22 Apr 201303:27	–	nvd
CVE	CVE-2013-0700	22 Apr 201303:27	–	cve

Source	Link
securityfocus	www.securityfocus.com/bid/57023
securityfocus	www.securityfocus.com/bid/59399
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-724606.html

# SPDX-FileCopyrightText: 2013 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:siemens:simatic_s7_1200";

if (description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.803387");
  script_version("2025-04-22T10:32:18+0000");
  script_cve_id("CVE-2013-0700", "CVE-2013-2780");
  script_tag(name:"cvss_base", value:"7.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_tag(name:"last_modification", value:"2025-04-22 10:32:18 +0000 (Tue, 22 Apr 2025)");
  script_tag(name:"creation_date", value:"2013-04-25 16:01:27 +0530 (Thu, 25 Apr 2013)");
  script_name("Siemens SIMATIC S7-1200 Multiple DoS Vulnerabilities (SSA-724606)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2013 Greenbone AG");
  script_family("Denial of Service");
  script_dependencies("gb_siemens_simatic_s7_consolidation.nasl");
  script_mandatory_keys("siemens/simatic_s7/detected");

  script_xref(name:"URL", value:"https://cert-portal.siemens.com/productcert/html/ssa-724606.html");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/57023");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/59399");

  script_tag(name:"summary", value:"Siemens SIMATIC S7-1200 devices are prone to multiple denial of
  service (DoS) vulnerabilities.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"impact", value:"Successful exploitation will allow attackers to cause DoS
  conditions via specially-crafted packets to TCP port 102 or UCP port 161.");

  script_tag(name:"affected", value:"Siemens SIMATIC S7-1200 versions 2.x and 3.x.");

  script_tag(name:"solution", value:"Update to version 4.0.0 or later.");

  script_tag(name:"qod_type", value:"remote_banner");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if(!version = get_app_version(cpe: CPE, nofork: TRUE))
  exit(0);

if(version =~ "^[23]\.") {
  report = report_fixed_ver(installed_version: version, fixed_version: "4.0.0");
  security_message(port: 0, data: report);
  exit(0);
}

exit(99);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Apr 2013 00:00Current

6.5Medium risk

Vulners AI Score6.5

CVSS27.8

EPSS0.00342