CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2016-3949
https://notcve.org/view.php?id=CVE-2016-3949
Siemens SIMATIC S7-300 Profinet-enabled CPU devices with firmware before 3.2.12 and SIMATIC S7-300 Profinet-disabled CPU devices with firmware before 3.3.12 allow remote attackers to cause a denial of service (defect-mode transition) via crafted (1) ISO-TSAP or (2) Profibus packets. CPU de dispositivos Siemens SIMATIC S7-300 con Profinet habilitada con firmware en versiones anteriores a 3.3.12 y CPU de dispositivos SIMATIC S7-300 con Profinet inhabilitada con firmware en versiones anteriores a 3.3.12 permiten atacantes remotos provocar una denegación de servicio (transición a modo por defecto) a través de paquetes (1) ISO-TSAP o (2) Profibus manipulados. • http://www.securitytracker.com/id/1036089 http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-818183.pdf https://cert-portal.siemens.com/productcert/pdf/ssa-818183.pdf https://ics-cert.us-cert.gov/advisories/ICSA-16-161-01 • CWE-399: Resource Management Errors •