Siemens Industry Online Support
Siemens AG
Entry type: Download Entry ID: 50182361, Entry date: 05/10/2011

Update für WinCC flexible Variablen Simulator

  • Entry
  • Associated product(s)

On 5 May 2011 the CERT informed us of a possible vulnerability in the WinCC flexible tag simulator. We have no information about the existence of a current threat to our product by malware that exploits this vulnerability. Our specialists have carried out a complete investigation. The vulnerability can allow remote code execution if a user calls a specially designed simulator application. The following products are affected:

  • ProTool 6.0 SP3 - (has already been phased-out)
  • WinCC flexible 2004 - (has already been phased-out)
  • WinCC flexible 2005 - (has already been phased-out)
  • WinCC flexible 2005 SP1
  • WinCC flexible 2007
  • WinCC flexible 2008
  • WinCC flexible 2008 SP1
  • WinCC flexible 2008 SP2

There is a free update available for download that removes the possible vulnerability in WinCC flexible Versions .

  1. Information on the Update
         Siemens_Security_Advisory SSA-170396 ( 73 KB )
        Liesmich ( 93 KB )
         Readme ( 162 KB )
    If you have problems in the use of the Update, please take contact with the Customer Support.
  2. Update Download
    Please note the file size.

        WinCC flexible Tag Simulator Update1:  ZIP ( 18339 KB ) ; EXE ( 18339 KB )


Support to the statistics
With this function the IDs found are listed according to number (format .txt).

Generate list
Copy URL
Display page in new design
mySupport Cockpit
Related links