CVE-2014-2256

Name of the Vulnerable Software and Affected Versions Siemens SIMATIC S7-1200 CPU PLC devices with firmware prior to 4.0

Description The issue allows remote attackers to cause a denial of service, resulting in a defect-mode transition, via crafted ISO-TSAP packets. Exploitation can be achieved by sending a special TCP/IP packet to port 102, which can cause the device to transition into an emergency mode that lasts until a hardware reset is performed.

Recommendations For Siemens SIMATIC S7-1200 CPU PLC devices with firmware prior to 4.0, update the firmware to version 4.0 or later to resolve the issue.