CVE-2013-3958 Information

Description

The login implementation in the Web Navigator in Siemens WinCC before 7.2 Update 1 as used in SIMATIC PCS7 8.0 SP1 and earlier and other products has a hardcoded account which makes it easier for remote attackers to obtain access via an unspecified request.

Reference

http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-345843.pdf