Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries

Details have emerged about multiple security vulnerabilities in two implementations of the Manufacturing Message Specification MMS protocol that, if successfully exploited, could have severe impacts in industrial environments. "The vulnerabilities could allow an attacker to crash an industrial...

Siemens SISCO MMS-EASE Third Party Component Resource Management Errors (CVE-2015-6574)

The SNAP Lite component in certain SISCO MMS-EASE and AX-S4 ICCP products allows remote attackers to cause a denial of service CPU consumption via a crafted packet. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

Siemens SISCO MMS-EASE Third Party Component

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low attack complexity Vendor : Siemens Equipment : SISCO MMS-EASE third party component Vulnerability : Resource Management Errors 2. RISK EVALUATION Successful exploitation of this vulnerability could allow attackers to cause a...

Code injection

The SNAP Lite component in certain SISCO MMS-EASE and AX-S4 ICCP products allows remote attackers to cause a denial of service CPU consumption via a crafted packet...

CVE-2015-6574

The SNAP Lite component in certain SISCO MMS-EASE and AX-S4 ICCP products allows remote attackers to cause a denial of service CPU consumption via a crafted packet...

CVE-2015-6574

The SNAP Lite component in certain SISCO MMS-EASE and AX-S4 ICCP products allows remote attackers to cause a denial of service CPU consumption via a crafted packet...

CVE-2015-6574

CVE-2015-6574 affects the SNAP Lite component in Siemens SISCO MMS-EASE and AX-S4 ICCP products. The vulnerability allows remote attackers to cause a denial-of-service (CPU consumption) by sending a specially crafted packet. Public documentation confirms affected products include SIPROTEC 5 devic...

PT-2016-3722 · Sisco · Sisco Mms-Ease +2

Name of the Vulnerable Software and Affected Versions: SISCO MMS-EASE and AX-S4 ICCP products affected versions not specified Description: The issue allows remote attackers to cause a denial of service, specifically CPU consumption, by sending a crafted packet to the SNAP Lite component...

CVE-2005-4812

The SISCO OSI stack for Windows, as used by MMS-EASE 7.10 and earlier, AX-S4 MMS 5.01 and earlier, AX-S4 ICCP 3.0103 and earlier, and the ICCP Toolkit for MMS-EASE 4.10 and earlier, allows remote attackers to cause a denial of service process crash via certain network traffic, as demonstrated usi...