CVE-2017-14023

Name of the Vulnerable Software and Affected Versions Siemens SIMATIC PCS 7 versions prior to V8.1 SP1 with WinCC V7.3 Upd 13 Siemens SIMATIC PCS 7 version V8.2

Description An Improper Input Validation issue allows an authenticated remote attacker who is a member of the administrators group to crash services by sending specially crafted messages to the DCOM interface.

Recommendations For versions prior to V8.1 SP1 with WinCC V7.3 Upd 13, update to V8.1 SP1 or later to resolve the issue. For version V8.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.