Multiple Cross-Site Scripting in WinCC (SCADA)

2012-05-23T00:00:00
ID PT-2012-11
Type ptsecurity
Reporter Positive Technologies
Modified 2012-06-20T00:00:00

Description

PT-2012-11: Multiple Cross-Site Scripting in WinCC (SCADA)

Fix date:

                    June 5, 2012

Vector: Remote

Systems affected: Siemens SIMATIC WinCC 7.x

Vendor: Siemens

Notification status: 23.05.2012 - Vendor is notified 23.05.2012 - Vendor gets vulnerability details 05.06.2012 - Vendor releases fixed version and details 20.06.2012 - Public disclosure