CVE-2012-1800 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Siemens Scalance S Firmware

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources

Severity

6.1MEDIUMNVD

EPSS

1.5%

top 18.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Scalance S Firmware Siemens Scalance S602 Siemens Scalance S612 +1 more

Timeline

PublishedApr 18

Latest updateMay 17

Description

Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 allows remote attackers to cause a denial of service (device outage) or possibly execute arbitrary code via a crafted DCP frame.

CVSS vector

AV:A/AC:L/C:N/I:N/A:CExploitability: 6.5 | Impact: 6.9

Affected Packages4 packages

▶NVDsiemens/scalance_s_firmware2.3.0+2

▶NVDsiemens/scalance_s602v2

▶NVDsiemens/scalance_s612v2

▶NVDsiemens/scalance_s613v2

🔴Vulnerability Details

GHSA

GHSA-f4fc-q79g-8f2p: Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613↗2022-05-17

▶

CVEList

CVE-2012-1800: Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613↗2012-04-18

▶