Vigil@nce - Siemens SIMATIC S7-1200: denial of service via ISO-TSAP
January 2013 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send a malicious packet to the ISO-TSAP port, in
order to stop Siemens SIMATIC S7-1200.
Impacted products: SIMATIC
Severity: 2/4
Creation date: 21/12/2012
DESCRIPTION OF THE VULNERABILITY
The Siemens SIMATIC S7-1200 product uses ISO-TSAP (port 102/tcp),
in order to administer the system.
However, the S7-1200 does not correctly decode malformed ISO-TSAP
packets, which creates a denial of service.
An attacker can therefore send a malicious packet to the ISO-TSAP
port, in order to stop Siemens SIMATIC S7-1200.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Siemens-SIMATIC-S7-1200-denial-of-service-via-ISO-TSAP-12264