CVE-2011-4879

Siemens WinCC/HMI Web Server vulnerability CVE-2011-4879: the HMI web server (miniweb.exe) fails to properly handle URIs beginning with 0xfa, enabling remote memory reads or DoS via crafted POST requests. Affected products include WinCC flexible 2004–2008 (pre-SP3), WinCC V11 (TIA Portal) before ...

KLA10394 Multiple vulnerabilities in Siemens

Multiple critical vulnerabilities have been found in Siemens products. Malicious users can exploit these vulnerabilities to read & modify arbitrary files, cause denial of service, execute arbitrary code, bypass authentication, obtain access and inject arbitrary HTTP headers. Below is a complete...