CVE-2012-1802
7.8
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:C
Exploitability: 10.0 / Impact: 6.9
Source: NVD
Description
Buffer overflow in the embedded web server on the Siemens Scalance X Industrial Ethernet switch X414-3E before 3.7.1, X308-2M before 3.7.2, X-300EEC before 3.7.2, XR-300 before 3.7.2, and X-300 before 3.7.2 allows remote attackers to cause a denial of service (device reboot) or possibly execute arbitrary code via a malformed URL.
Affected (31)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.7.0 | |
| All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.7.0 | |
| All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.7.0 | |
| All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.7.0 | |
| All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 3.7.0 | |
| All versions |
References (6)
Source: cret@cert.org
Source: cret@cert.org
Vendor Advisory
Source: cret@cert.org
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Timeline
No history available yet.