CVE-2013-0670

Publication date

2013-03-21 14:00:00

Family

icscert

State

PUBLISHED

Description

CRLF injection vulnerability in the HMI web application in Siemens WinCC (TIA Portal) 11 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.