Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-5233

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2014-5233
Last Modified 22 Jan 2015 09:00:51
Published 14 Jan 2015 06:59:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2014-5233

Summary

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the credential-processing mechanism.

Vulnerable Systems

Application

  • Siemens Simatic Wincc Sm%40rtclient 1.0


References

CONFIRM - http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-311299.pdf

SECTRACK - 1031546


Last Updated: 27 May 2016 11:07:32