CVE-2013-0677
21.03.2013, 15:55
The web server in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote attackers to obtain sensitive information or cause a denial of service via a crafted project file.Enginsight
| Vendor | Product | Version |
|---|---|---|
| siemens | simatic_pcs7 | 𝑥 ≤ 8.0 |
| siemens | simatic_pcs7 | 7.1:sp3 |
| siemens | wincc | 𝑥 ≤ 7.1 |
| siemens | wincc | 5.0 |
| siemens | wincc | 5.0:sp1 |
| siemens | wincc | 6.0 |
| siemens | wincc | 6.0:sp2 |
| siemens | wincc | 6.0:sp3 |
| siemens | wincc | 6.0:sp4 |
| siemens | wincc | 7.0 |
| siemens | wincc | 7.0:sp1 |
| siemens | wincc | 7.0:sp2 |
| siemens | wincc | 7.0:sp3 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References