3 matches found
CVE-2014-2258
CVE-2014-2258 affects Siemens SIMATIC S7-1200 CPU PLCs with firmware before 4.0. A crafted HTTPS packet can trigger a defect-mode transition, causing a denial of service. The issue is distinct from CVE-2014-2259. The vulnerability is triggered via remote network access to the device’s HTTPS handl...
CVE-2014-2258
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service defect-mode transition via crafted HTTPS packets, a different vulnerability than CVE-2014-2259...
Siemens SIMATIC S7-1200多个漏洞
CVE ID: CVE-2014-2249,CVE-2014-2250,CVE-2014-2252,CVE-2014-2254,CVE-2014-2256,CVE-2014-2258 SIMATIC S7-1200是可编程控制器,可实现简单却高度精确的自动化任务。 Siemens SIMATIC S7-1200 4.0.0之前版本在实现上存在多个漏洞,可被恶意利用执行跨站请求伪造、劫持用户会话、造成拒绝服务。 1、向TCP端口443发送特制的数据包造成的错误可造成设备进入defect模式。 2、随机生成器内弱熵相关错误,可导致劫持另外用户的会话。...