Lucene search
+L

59 matches found

ics
ics
added 2017/05/09 12:0 a.m.35 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update I)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Improper Input Validation UPDATE INFORMATION This updated advisory is a follow-up to the updated...

6.5CVSS6.3AI score0.00469EPSS
Exploits0References44
ics
ics
added 2017/05/09 12:0 a.m.43 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update F)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory...

6.5CVSS0.1AI score0.00469EPSS
Exploits0References40
ics
ics
added 2017/05/09 12:0 a.m.46 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update C)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory...

6.5CVSS0.4AI score0.00469EPSS
Exploits0References36
ics
ics
added 2017/05/09 12:0 a.m.53 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update A)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the original advisory...

6.5CVSS0.5AI score0.00469EPSS
Exploits0References34
ics
ics
added 2017/05/09 12:0 a.m.59 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update E)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory...

6.5CVSS0.2AI score0.00469EPSS
Exploits0References39
ics
ics
added 2017/05/09 12:0 a.m.45 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update D)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory...

6.5CVSS0.4AI score0.00469EPSS
Exploits0References37
ics
ics
added 2017/05/09 12:0 a.m.83 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update B)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory...

6.5CVSS0.5AI score0.00469EPSS
Exploits0References35
ics
ics
added 2017/05/08 12:0 a.m.145 views

Siemens PROFINET DCP (Update V)

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION : Exploitable from an adjacent network/low attack complexity Vendor : Siemens Equipment : Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerabilities : Uncontrolled Resource Consumption 2. UPDATE INFORMATION This updated advisory...

7AI score
Exploits0References10
nessus
nessus
added 2015/05/06 12:0 a.m.16 views

Siemens SCALANCE S612 Firewall > 2.1 and < 2.3.0.3 Multiple Vulnerabilities (SSA-268149)

Binary data scadasiemensscalances612SSA-268149.nbin...

10CVSS6.9AI score0.05068EPSS
Exploits0References5
nvd
nvd
added 2012/04/18 10:33 a.m.17 views

CVE-2012-1800

Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 allows remote attackers to cause a denial of service device outage or possibly execute arbitrary code via a crafted...

6.1CVSS8.3AI score0.01616EPSS
Exploits0References4
prion
prion
added 2012/04/18 10:33 a.m.17 views

Stack overflow

Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 allows remote attackers to cause a denial of service device outage or possibly execute arbitrary code via a crafted...

6.1CVSS9AI score0.01616EPSS
Exploits0References4Affected Software4
cve
cve
added 2012/04/18 10:0 a.m.46 views

CVE-2012-1800

The CVE-2012-1800 entry concerns a stack-based buffer overflow in the Profinet DCP protocol stack of Siemens Scalance S Security Module firewalls (models S602 V2, S612 V2, S613 V2) prior to firmware 2.3.0.3. The flaw allows remote attackers, via a crafted DCP frame, to cause a denial of service o...

6.1CVSS8.6AI score0.01616EPSS
Exploits0References4Affected Software4
cvelist
cvelist
added 2012/04/18 10:0 a.m.24 views

CVE-2012-1800

Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 allows remote attackers to cause a denial of service device outage or possibly execute arbitrary code via a crafted...

8.3AI score0.01616EPSS
Exploits0References4
ics
ics
added 2012/01/13 7:0 a.m.43 views

Siemens Scalance S Multiple Security Vulnerabilities

Overview ICS-CERT has received a report from Siemens regarding two security vulnerabilities in the Scalance S Security Module firewall. This vulnerability was reported to Siemens by Adam Hahn and Manimaran Govindarasu for coordinated disclosure. The first issue is a brute-force credential guessin...

10CVSS8.3AI score0.05068EPSS
Exploits0References10
gentoo
gentoo
added 2009/06/30 12:0 a.m.66 views

Wireshark: Multiple vulnerabilities

Background Wireshark is a versatile network protocol analyzer. Description Multiple vulnerabilities have been discovered in Wireshark: David Maciejak discovered a vulnerability in packet-usb.c in the USB dissector via a malformed USB Request Block URB CVE-2008-4680. Florent Drouin and David...

10CVSS8.6AI score0.1523EPSS
Exploits7
openvas
openvas
added 2009/04/20 12:0 a.m.28 views

Wireshark Multiple Unspecified Vulnerabilities (Apr 2009) - Windows

Wireshark is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark";...

10CVSS6.6AI score0.1523EPSS
Exploits3References6
openvas
openvas
added 2009/04/20 12:0 a.m.29 views

Wireshark Multiple Unspecified Vulnerabilities (Apr 2009) - Linux

Wireshark is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark";...

10CVSS6.6AI score0.1523EPSS
Exploits3References6
prion
prion
added 2009/04/01 10:30 a.m.18 views

Format string

Format string vulnerability in the PROFINET/DCP PN-DCP dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details are obtained from third party information...

10CVSS7.9AI score0.1523EPSS
Exploits2References22Affected Software1
cvelist
cvelist
added 2009/04/01 10:0 a.m.23 views

CVE-2009-1210

Format string vulnerability in the PROFINET/DCP PN-DCP dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details are obtained from third party information...

7.2AI score0.1523EPSS
Exploits2References22
Rows per page
Query Builder