CVE-2014-4683 Information

Description

The WebNavigator server in Siemens SIMATIC WinCC before 7.3 as used in PCS7 and other products allows remote authenticated users to gain privileges via a (1) HTTP or (2) HTTPS request.

Reference

http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-214365.pdf