831 matches found
CVE-2011-4515
Summary of CVE-2011-4515 (Siemens WinCC TIA Portal): The vulnerability affects Siemens WinCC (TIA Portal) HMI Web server in version 11. It involves storing HMI Web-application passwords using a reversible scheme, leaving password data world-readable/writable and retrievable with local access or v...
CVE-2013-0670
Siemens WinCC (TIA Portal) 11 HMI Web application is affected by CVE-2013-0670 (CRLF injection). A crafted URL can lead to HTTP header injection and HTTP response splitting via the HMI Web server. Public sources (NVD, Red Hat cve page, ICS-CERT advisory) confirm the vulnerability in WinCC V11 and...
CVE-2013-0667
CVE-2013-0667 is a cross-site scripting (XSS) vulnerability in the HMI web application of Siemens WinCC (TIA Portal) 11. Affected product: WinCC (TIA Portal) V11 (all versions). Vulnerability: improper handling in the Web server may allow an authenticated user or an attacker with valid credential...
CVE-2013-0672
Siemens WinCC (TIA Portal) 11 HMI Web application is affected by a stored Cross-Site Scripting (XSS) vulnerability (CVE-2013-0672). An authenticated user can inject arbitrary script or HTML via data stored in the Web interface. The issue is associated with the HMI Web server and Web-based compone...
CVE-2013-0669
Siemens WinCC (TIA Portal) V11 HMI web application is affected by CVE-2013-0669. An authenticated user can craft HTTP requests that crash the HMI Web application, causing a denial of service. The root cause is Improper Input Validation in the Web server, with network attack vector and no confiden...
CVE-2011-4515
Siemens WinCC TIA Portal 11 uses a reversible algorithm for storing HMI web-application passwords in world-readable and world-writable files, which allows local users to obtain sensitive information by leveraging 1 physical access or 2 Sm@rt Server access...
CVE-2013-0670
CRLF injection vulnerability in the HMI web application in Siemens WinCC TIA Portal 11 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL...
CVE-2013-0671
Directory traversal vulnerability in Siemens WinCC TIA Portal 11 allows remote authenticated users to read HMI web-application source code and user-defined scripts via a crafted URL...
CVE-2013-0668
Multiple cross-site scripting XSS vulnerabilities in the HMI web application in Siemens WinCC TIA Portal 11 allow remote attackers to inject arbitrary web script or HTML via a crafted URL...
CVE-2013-0669
The HMI web application in Siemens WinCC TIA Portal 11 allows remote authenticated users to cause a denial of service daemon crash via a crafted HTTP request...
CVE-2013-0667
Cross-site scripting XSS vulnerability in the HMI web application in Siemens WinCC TIA Portal 11 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...
CVE-2013-0668
CVE-2013-0668 : In Siemens WinCC (TIA Portal) 11, the HMI Web application is vulnerable to cross-site scripting via crafted URLs. The issue is tied to input handling in the Web UI, enabling an authenticated or social-engineered user to trigger script execution in other users’ browsers. Affected p...
Siemens WinCC 7.2 Multiple Vulnerabilities
OVERVIEW This advisory provides mitigation details for vulnerabilities that impact the Siemens WinCC Web Navigator 7.2. Researchers Alexander Tlyapov, Sergey Gordeychik, and Timur Yunusov of Positive Technologies have identified multiple vulnerabilities in the Siemens WinCC Web Navigator 7.2...
PT-2013-43: Hard-coded credentials in Siemens WinCC and SIMATIC PCS 7
The specialists of the Positive Research center have detected a vulnerability in Siemens WinCC and SIMATIC PCS 7 related to hard-coded credentials used in the login system . Attackers with network access and knowledge of the credentials could log into the Web Navigator Web applications as an...
Simatic WinCC Information Harvester
encoding: UTF-8 This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Simatic WinCC info...
PT-2013-42: SQL Injection in Siemens WinCC and SIMATIC PCS 7
The specialists of the Positive Research center have detected "SQL Injection" vulnerability in Siemens WinCC and SIMATIC PCS 7. The WinCC Web Navigator 7.2 and Runtime Client OPC protocol have input filtering in the login screen an attacker can overcome, allowing injection of SQL statements into...
PT-2013-44: Forced browsing in Siemens WinCC and SIMATIC PCS 7
The specialists of the Positive Research center have detected a vulnerability, which can be used to gain access to usernames in Siemens WinCC and SIMATIC PCS 7. The WinCC Web Navigator 7.2 allows a user with authenticated access to probe for valid NetBIOS user names by manipulating URL parameters...
PT-2014-13: Privilege Gaining in Siemens SIMATIC WinCC
The specialists of the Positive Research center have detected a Privilege Gaining vulnerability in SIMATIC WinCC. Existing access control of the WinCC WebNavigator server at port 80/tcp and port 443/tcp could allow remote authenticated users to escalate their privileges in WinCC. How to fix Updat...
PT-2014-12: Information Disclosure in Siemens SIMATIC WinCC
The specialists of the Positive Research center have detected an Information disclosure vulnerability in SIMATIC WinCC. The SIMATIC WinCC WebNavigator server at port 80/tcp and port 443/tcp could allow unauthenticated access to sensitive data if an attacker sends specially crafted HTTP requests t...
Kelihos Update Includes New TLD and USB Infection Capabilities
There’s a little Michael Myers in the Kelihos botnet; maim it, kill it and it keeps on coming back to wreak more havoc. The 2011 takedown of the Kelihos botnet was one of Microsoft’s high-profile success stories against spambots and the like, yet Kelihos was back for more at the start of 2012 usi...