153 matches found
Snakes and Ladder Logic
A click to a reverse shell in OpenPLC and ladder logic OR Why you shouldn’t run everything as root in PLC and RTUs. TL;DR Most of the RTU’s and PLC’s that run a Unix based OS that we test and, and some devices on Windows that we’ve tested on maritime engagements, run as root and/or admin. They al...
Malicious Package in ladder-text-js
ladder-text-js contained a malicious script that attempted to delete all files when npm test was run. Recommendation This module has been unpublished from the npm Registry. If you find this module in your environment remove it...
Introduction to PLCs and Ladder Logic
Introduction We do a lot of client work with ICS, IIoT, and SCADA. We've been to various power plants, factories, electricity substations and they all use the same technology in the form of a PLC. A PLC is a Programmable Logic Controller. PLCs are what keep our Critical National Infrastructure...
Rockwellautomation Micrologix Unspecified Vulnerability
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Rockwellautomation Micrologix Unspecified Vulnerability
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Rockwellautomation Micrologix Unspecified Vulnerability
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Rockwellautomation Micrologix Unspecified Vulnerability
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Rockwellautomation Micrologix Unspecified Vulnerability
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Rockwellautomation Micrologix Unspecified Vulnerability
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Rockwell Automation Micrologix 1400 <= 21.2 Ladder Logic Overwrite
Binary data 720216.prm...
Rockwell Automation Micrologix 1400 <= 21.2 User Fault Routine Exploit
Binary data 720222.prm...
Rockwell Automation Micrologix 1400 <= 21.2 Exploitable Access Control
Binary data 720215.prm...
Rockwell Automation Micrologix 1400 <= 21.2 Master Password Request Exploit
Binary data 720225.prm...
Rockwell Automation Micrologix 1400 <= 21.2 Live Rung Edits
Binary data 720220.prm...
Rockwell Automation Micrologix 1400 <= 21.2 Float Value Exploit
Binary data 720223.prm...
Rockwell Automation Micrologix 1400 <= 21.2 Read/Write Exploit
Binary data 720218.prm...
Rockwell Automation Micrologix 1400 <= 21.2 Memory Module Bit Exploit
Binary data 720217.prm...
Rockwell Automation Micrologix 1400 <= 21.2 Encoded Ladder Logic Read Exploit
Binary data 720226.prm...
Rockwell Automation Micrologix 1400 <= 21.2 Fault Bits Exploit
Binary data 720224.prm...
ALPINE-CVE-2018-20187
A side-channel issue was discovered in Botan before 2.9.0. An attacker capable of precisely measuring the time taken for ECC key generation may be able to derive information about the high bits of the secret key, as the function to derive the public point from the secret scalar uses an unblinded...