CVE-2012-1800
Siemens Scalance S602/S612/S613 < 2.3.0 - Stack-based Buffer Overflow via Profinet DCP Frame
Title source: llmDescription
Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 allows remote attackers to cause a denial of service (device outage) or possibly execute arbitrary code via a crafted DCP frame.
References (4)
Core 4
Core References
Various Sources x_refsource_confirm
http://support.automation.siemens.com/WW/view/en/59869684
Vendor Advisory x_refsource_confirm
http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-268149.pdf
US Government Resource x_refsource_misc
http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-05.pdf
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/81034
Scores
EPSS
0.0152
EPSS Percentile
81.5%
Details
CWE
CWE-119
Status
published
Products (6)
siemens/scalance_s602
v2
siemens/scalance_s612
v2
siemens/scalance_s613
v2
siemens/scalance_s_firmware
2.1.0
siemens/scalance_s_firmware
2.2.0
siemens/scalance_s_firmware
< 2.3.0
Published
Apr 18, 2012
Tracked Since
Feb 18, 2026