Update für WinCC flexible Variablen Simulator
On 5 May 2011 the CERT informed us of a possible vulnerability in the WinCC flexible tag simulator. We have no information about the existence of a current threat to our product by malware that exploits this vulnerability. Our specialists have carried out a complete investigation. The vulnerability can allow remote code execution if a user calls a specially designed simulator application. The following products are affected:
- ProTool 6.0 SP3 - (has already been phased-out)
- WinCC flexible 2004 - (has already been phased-out)
- WinCC flexible 2005 - (has already been phased-out)
- WinCC flexible 2005 SP1
- WinCC flexible 2007
- WinCC flexible 2008
- WinCC flexible 2008 SP1
- WinCC flexible 2008 SP2
There is a free update available for download that removes the possible vulnerability in WinCC flexible Versions .
- Information on the Update
Siemens_Security_Advisory SSA-170396 ( 73 KB )
Liesmich ( 93 KB )
Readme ( 162 KB )
If you have problems in the use of the Update, please take contact with the Customer Support.
- Update Download
Please note the file size.
WinCC flexible Tag Simulator Update1: ZIP ( 18339 KB ) ; EXE ( 18339 KB )