Siemens SIMATIC Logon Detection

Info Nessus Plugin ID 97667


A logon service for SCADA applications is running on the remote host.


The Siemens SIMATIC Logon service is running on the remote host. This service provides central access protection for SIMATIC applications and plant areas.

This plugin attempts to anonymously access the ISLSLogon interface of the Component Object Model (COM) class SLSLogon. If the COM security on the remote host is configured to disable anonymous access (i.e., using dcomcnfg.exe), the plugin will not able to detect the SIMATIC Logon service.



See Also

Plugin Details

Severity: Info

ID: 97667

File Name: scada_siemens_simatic_logon_detect.nbin

Version: $Revision: 1.38 $

Type: remote

Family: SCADA

Published: 2017/03/10

Modified: 2018/07/19

Dependencies: 11936

Risk Information

Risk Factor: Info

Vulnerability Information

CPE: x-cpe:/a:siemens:simatic_logon