Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.103571 |
Category: | General |
Title: | Siemens SIMATIC S7-1200 SSL Private Key Reuse Spoofing Vulnerability |
Summary: | Siemens SIMATIC S7-1200 is prone to a security vulnerability that may; allow attackers to spoof SSL certificates.;; Attackers can exploit this issue to display incorrect SSL; certificates. Successful exploits will cause victims to accept the; certificates assuming they are from a legitimate site.;; Siemens SIMATIC S7-1200 versions 2.x are vulnerable. Other versions; may also be affected. |
Description: | Summary: Siemens SIMATIC S7-1200 is prone to a security vulnerability that may allow attackers to spoof SSL certificates. Attackers can exploit this issue to display incorrect SSL certificates. Successful exploits will cause victims to accept the certificates assuming they are from a legitimate site. Siemens SIMATIC S7-1200 versions 2.x are vulnerable. Other versions may also be affected. Solution: Updates are available. Please see the references for more information. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N |
Cross-Ref: |
BugTraq ID: 55559 Common Vulnerability Exposure (CVE) ID: CVE-2012-3037 http://en.securitylab.ru/lab/PT-2012-48 http://www.us-cert.gov/control_systems/pdf/ICSA-12-263-01.pdf |
Copyright | This script is Copyright (C) 2012 Greenbone Networks GmbH |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |