Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2731

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2014-2731
Last Modified 21 Apr 2014 03:28:08
Published 19 Apr 2014 03:55:07
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-2731

Summary

Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port (1) 4999 or (2) 80.

Vulnerable Systems

Application

  • Siemens Sinema Server 12.0


References

MISC - http://ics-cert.us-cert.gov/advisories/ICSA-14-107-01

CONFIRM - http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-364879.pdf


Last Updated: 27 May 2016 11:05:02