Security Advisory: Multiple Web Vulnerabilities in the S7-1200 PLC
                                                                                
Author: Ralf Spenneberg <ralf@spenneberg.net>, Hendrik Schwartke, Maik Brüggemann
                                                                                
Revision: 1
                                                                                
Last Updated: April 24 2014
                                                                                
CVE-2014-2908
CVE-2014-2909
                                                                                
Summary:
The integrated web server (port 80/tcp and port 443/tcp) of the affected devices could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked to click on a malicious link (CVE-2014-2908). 
CVSS 4.3

The integrated web server (port 80/tcp and port 443/tcp) of the affected devices could allow attackers to inject HTTP headers if unsuspecting users are tricked to click on a malicious link (CVE-2014-2909).
CVSS 5.8

Impact:
For all vulnerabilities the attacker must trick users of the devices to open a malicious webpage.
                                                                                
Vulnerable:
All S7-1200 versions prior to V4.0
                                                                                        
                                                                                
Solution:
Workaround: Disabling the Webserver
Firmware 4.0

References:
https://ics-cert.us-cert.gov/advisories/ICSA-14-114-02
https://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-892012.pdf