Siemens WinCC Web Server Information Disclosure and Denial of Service Vulnerability

Siemens WinCC Web Server Information Disclosure and Denial of Service Vulnerability

CVE-2013-0677 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:P

The web server in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote attackers to obtain sensitive information or cause a denial of service via a crafted project file.

Learn more about our Web App Pen Testing.