Lucene search
PRIOn knowledge basePRION:CVE-2011-4508HistoryFeb 03, 2012 - 8:55 p.m.
Authentication flaw
2012-02-0320:55:00
PRIOn knowledge base
www.prio-n.com
The HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime generates predictable authentication tokens for cookies, which makes it easier for remote attackers to bypass authentication via a crafted cookie.
Related
cve
cve
CVE-2011-4508
2022-10-03 16:15:14
nvd
nvd
CVE-2011-4508
2012-02-03 20:55:01
cvelist
cvelist
CVE-2011-4508
2022-10-03 16:15:14
openvas
openvas
Multiple Siemens SIMATIC Products Authentication Bypass Vulnerabilities
2011-12-23 00:00:00
Multiple Siemens SIMATIC Products Authentication Bypass Vulnerabilities
2011-12-23 00:00:00
ics
ics
Siemens Simatic HMI Authentication Vulnerabilities
2013-04-22 12:00:00
Siemens SIMATIC WinCC Vulnerabilities (UPDATE A)
2018-09-06 12:00:00
kaspersky
kaspersky
KLA10394 Multiple vulnerabilities in Siemens
2012-01-24 00:00:00