Siemens SIMATIC WinCC (TIA Portal) (V13 all versions before SP2 and V14 before SP1), SIMATIC STEP 7 (TIA Portal) (V13 all versions before SP2 and V14 before SP1), SIMATIC STEP 7 V5.X (All versions before V5.6), STEP 7 - Micro/WIN SMART (All versions before V2.3), SMART PC Access V2.0, SIMATIC Automation Tool (All versions before V3.0), SIMATIC WinCC (V7.2 and prior, V7.3 before Update 15, and V7.4 before SP1 Upd1), SIMATIC PCS 7 (All versions before 9.0), SIMATIC NET PC-Software (All versions before V14 SP1), Primary Setup Tool (PST) (All versions before V4.2HF1), Security Configuration Tool (SCT) (All versions before V5.0), SINEMA Server (All versions before V14), SINAUT ST7CC (All versions), SIMATIC WinAC RTX 2010 SP2 (All versions), SIMATIC WinAC RTX F 2010 SP2 (All versions), SINUMERIK 808D Programming Tool (All versions before V4.7 SP4 HF2), and SIMATIC WinCC flexible 2008 (All versions) could be affected by a Denial-of-Service condition induced by a specially crafted PROFINET DCP broadcast (Layer 2 - Ethernet) packet.

A vulnerability has been identified in Primary Setup Tool (PST), SIMATIC Automation Tool, SIMATIC NET PC-Software, SIMATIC PCS 7, SIMATIC STEP 7 (TIA Portal) V13, SIMATIC STEP 7 (TIA Portal) V14, SIMATIC STEP 7 V5.X, SIMATIC WinAC RTX 2010 SP2, SIMATIC WinAC RTX F 2010 SP2, SIMATIC WinCC (TIA Portal) V13, SIMATIC WinCC (TIA Portal) V14, SIMATIC WinCC V7.2 and prior, SIMATIC WinCC V7.3, SIMATIC WinCC V7.4, SIMATIC WinCC flexible 2008, SINAUT ST7CC, SINEMA Server, SINUMERIK 808D Programming Tool, SMART PC Access, STEP 7 - Micro/WIN SMART, Security Configuration Tool (SCT). Specially crafted PROFINET DCP broadcast packets sent to the affected products on a local Ethernet segment (Layer 2) could cause a Denial-of-Service condition of some services. The services require manual restart to recover.