2 matches found
CVE-2013-0678
Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, does not properly represent WebNavigator credentials in a database, which makes it easier for remote authenticated users to obtain sensitive information via a SQL query...
CVE-2013-0678
Siemens WinCC (before 7.2, used in SIMATIC PCS7 before 8.0 SP1) stores WebNavigator passwords in an MS SQL database without proper protection, enabling remote authenticated users with DB access to read credentials and obtain sensitive information. The root cause is information disclosure due to m...