CVE-2012-1799
First published: Wed Apr 18 2012(Updated: )
The web server on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 does not limit the rate of authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack on the administrative password.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens Scalance S Firmware | <=2.3.0 | |
| Siemens Scalance S Firmware | =2.1.0 | |
| Siemens Scalance S Firmware | =2.2.0 | |
| Siemens SCALANCE S602 | =v2 | |
| Siemens SCALANCE S612 | =v2 | |
| Siemens SCALANCE S613 | =v2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/siemens
- canonical/siemens scalance s firmware
- version/siemens scalance s firmware/2.3.0
- version/siemens scalance s firmware/2.1.0
- version/siemens scalance s firmware/2.2.0
- canonical/siemens scalance s602
- version/siemens scalance s602/v2
- canonical/siemens scalance s612
- version/siemens scalance s612/v2
- canonical/siemens scalance s613
- version/siemens scalance s613/v2