CVE-2016-9158

Name of the Vulnerable Software and Affected Versions SIMATIC S7-300 CPU family versions all SIMATIC S7-400 PN/DP V6 and below CPU family versions all SIMATIC S7-400 PN/DP V7 CPU family versions all SIMATIC S7-400 V6 and earlier CPU family versions all SIMATIC S7-400 V7 CPU family versions all

Description A vulnerability has been identified that can be exploited by sending specially crafted packets to port 80/tcp, causing the affected devices to go into defect mode. A cold restart is required to recover the system.

Recommendations For SIMATIC S7-300 CPU family, avoid using port 80/tcp until a fix is available. For SIMATIC S7-400 PN/DP V6 and below CPU family, restrict access to port 80/tcp to minimize the risk of exploitation. For SIMATIC S7-400 PN/DP V7 CPU family, consider disabling the affected port until a patch is available. For SIMATIC S7-400 V6 and earlier CPU family, restrict access to the vulnerable component to prevent exploitation. For SIMATIC S7-400 V7 CPU family, as a temporary workaround, consider implementing additional security measures to prevent specially crafted packets from being sent to port 80/tcp.