Vulnerabilities > Siemens > Scalance S Firmware

DATE CVE VULNERABILITY TITLE RISK
2012-04-18 CVE-2012-1800 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Siemens products
Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 allows remote attackers to cause a denial of service (device outage) or possibly execute arbitrary code via a crafted DCP frame.
low complexity
siemens CWE-119
6.1
2012-04-18 CVE-2012-1799 Improper Authentication vulnerability in Siemens products
The web server on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 does not limit the rate of authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack on the administrative password.
network
low complexity
siemens CWE-287
critical
10.0