This security bulletin contains one low risk vulnerability.
The vulnerability allows a remote authenticated attacker in the 'administrators' group to cause DoS condition on the target system.
The weakness exists due to improper input validation. A remote attacker can send specially crafted data to the target DCOM interface and cause the target service to crash.
Install update from vendor's website (V8.1 SP1 with WinCC V7.3 Upd 13).
SIMATIC PCS 7: 8.1 - 8.2Fixed software versions
Q & A
Can this vulnerability be exploited remotely?
How the attacker can exploit this vulnerability?
Is there known malware, which exploits this vulnerability?