Industrial Security Alert - 20.12.2012
Denial-of-Service vulnerability in S7-1200 from V2.x
Siemens has been notified by IT experts of a vulnerability in the network interfaces of the SIMATIC S7-1200 PLC versions from V2.x. A potential attacker could use the vulnerability to perform a Denial-of-Service attack against the CPU.
The vulnerability will be fixed with the next scheduled product update.
We thank Prof. Dr. Hartmut Pohl, softScheck GmbH, and Arne Vidstrom, Swedish Defense Research Agency, for their information.