Remote Code Execution Vulnerability in SIEMENS SIMATIC WinCC and SIMATIC PCS 7

Remote Code Execution Vulnerability in SIEMENS SIMATIC WinCC and SIMATIC PCS 7

CVE-2016-9160 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:P

A vulnerability in SIEMENS SIMATIC WinCC (All versions < SIMATIC WinCC V7.2) and SIEMENS SIMATIC PCS 7 (All versions < SIMATIC PCS 7 V8.0 SP1) could allow a remote attacker to crash an ActiveX component or leak parts of the application memory if a user is tricked into clicking on a malicious link under certain conditions.

Learn more about our User Device Pen Test.