Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.103571
Category:General
Title:Siemens SIMATIC S7-1200 SSL Private Key Reuse Spoofing Vulnerability
Summary:Siemens SIMATIC S7-1200 is prone to a security vulnerability that may; allow attackers to spoof SSL certificates.;; Attackers can exploit this issue to display incorrect SSL; certificates. Successful exploits will cause victims to accept the; certificates assuming they are from a legitimate site.;; Siemens SIMATIC S7-1200 versions 2.x are vulnerable. Other versions; may also be affected.
Description:Summary:
Siemens SIMATIC S7-1200 is prone to a security vulnerability that may
allow attackers to spoof SSL certificates.

Attackers can exploit this issue to display incorrect SSL
certificates. Successful exploits will cause victims to accept the
certificates assuming they are from a legitimate site.

Siemens SIMATIC S7-1200 versions 2.x are vulnerable. Other versions
may also be affected.

Solution:
Updates are available. Please see the references for more information.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Cross-Ref: BugTraq ID: 55559
Common Vulnerability Exposure (CVE) ID: CVE-2012-3037
http://en.securitylab.ru/lab/PT-2012-48
http://www.us-cert.gov/control_systems/pdf/ICSA-12-263-01.pdf
CopyrightThis script is Copyright (C) 2012 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.