This script is Copyright (C) 2017 Tenable Network Security, Inc.
An application installed on the remote host is affected by multiple
denial of service vulnerabilities.
The version of Siemens SIMATIC WinCC (TIA Portal) installed on the
remote host is prior to 14 service pack 1 (1400.100.1201.1). It is,
therefore, affected by an XML External Entity Injection Vulnerability.
A flaw in the OPC discovery server, that is triggered during the handling
of a specially crafted packet, may allow a remote attacker to gain access
to certain resources or consume excessive resources.
See also :
Upgrade to Siemens SIMATIC WinCC (TIA Portal) version 14 SP1 (1400.100.1201.1) or later.
Risk factor :
High / CVSS Base Score : 8.5