Affected configuration(s):
cpe:/a:siemens:simatic_wincc_open_architecture:3.12
Date published: 2014-02-06T23:52:04.410-05:00
Date last modified: 2017-08-28T21:34:27.513-04:00
CVSS Score: 7.5
Principal attack vector: NETWORK
Complexity: LOW
Reference URL: http://ics-cert.us-cert.gov/advisories/ICSA-14-035-01
Summary: The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999.