CVE-2012-5409

Siemens SiPass integrated < mp2.6 - Remote Code Execution via IOCP RPC Message Handling

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-5409. PoCs published by Lucas Apa.

AI-analyzed exploit summary The advisory describes a critical vulnerability in SIEMENS SiPass Integrated MP2.6 and earlier, where insufficient sanity checking in AscoServer.exe allows remote attackers to corrupt heap structures and dereference arbitrary pointers, leading to remote code execution under the SYSTEM account.

Description

AscoServer.exe in the server in Siemens SiPass integrated MP2.6 and earlier does not properly handle IOCP RPC messages received over an Ethernet network, which allows remote attackers to write data to any memory location and consequently execute arbitrary code via crafted messages, as demonstrated by an arbitrary pointer dereference attack or a buffer overflow attack.

Exploits (1)

exploitdb WRITEUP
by Lucas Apa · textdoswindows
https://www.exploit-db.com/exploits/22397

The advisory describes a critical vulnerability in SIEMENS SiPass Integrated MP2.6 and earlier, where insufficient sanity checking in AscoServer.exe allows remote attackers to corrupt heap structures and dereference arbitrary pointers, leading to remote code execution under the SYSTEM account.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Complex
Reliability
Theoretical
Target: SIEMENS SiPass Integrated MP2.6 and earlier
No auth needed
Prerequisites: Network access to port 4343 · Ability to send crafted IOCP messages
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/50900
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/86129

Scores

EPSS 0.1579
EPSS Percentile 96.4%

Details

CWE
CWE-119
Status published
Products (1)
siemens/sipass_integrated < mp2.6
Published Nov 01, 2012
Tracked Since Feb 18, 2026