This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.
An application installed on the remote host is affected by a local
privilege escalation vulnerability.
The version of Siemens SIMATIC WinCC (TIA Portal) installed on the
remote Windows host is prior to version 14. It is, therefore, affected
by a local privilege escalation vulnerability due to an unquoted
service path. A local attacker can exploit this, via a malicious
executable in the root path, to elevate privileges.
Note that Nessus has not tested for this issue but has instead relied
only on the application's self-reported version number.
See also :
Upgrade to Siemens SIMATIC WinCC (TIA Portal) version 14 or later.
Risk factor :
Medium / CVSS Base Score : 6.9