Vulnerability Details CVE-2012-4691
Memory leak in Siemens Automation License Manager (ALM) 4.x and 5.x before 5.2 allows remote attackers to cause a denial of service (memory consumption) via crafted packets.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.1%
CVSS Severity
CVSS v2 Score 3.3
References
- http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-783261.pdf
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-349-01.pdf
- http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-783261.pdf
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-349-01.pdf
Products affected by CVE-2012-4691
-
cpe:2.3:a:siemens:automation_license_manager:4.0
-
cpe:2.3:a:siemens:automation_license_manager:5.0
-
cpe:2.3:a:siemens:automation_license_manager:5.1