Double free

The DNP3 feature on Rockwell Automation Allen-Bradley MicroLogix 1400 1766-Lxxxxx A FRN controllers 7 and earlier and 1400 1766-Lxxxxx B FRN controllers before 15.001 allows remote attackers to cause a denial of service process disruption via malformed packets over 1 an Ethernet network or 2 a...

CVE-2014-5410 Rockwell Automation Micrologix 1400 Improper Input Validation

The DNP3 feature on Rockwell Automation Allen-Bradley MicroLogix 1400 1766-Lxxxxx A FRN controllers 7 and earlier and 1400 1766-Lxxxxx B FRN controllers before 15.001 allows remote attackers to cause a denial of service process disruption via malformed packets over 1 an Ethernet network or 2 a...

CVE-2014-5410

The CVE-2014-5410 issue affects Rockwell Automation Allen-Bradley MicroLogix 1400 Series A FRN (1766-LxxxxxA) controllers version 7 and earlier and Series B FRN controllers before 15.001, where the DNP3 feature can be abused by malformed packets over Ethernet or a serial line to cause a DoS (loss...

Rockwell Micrologix 1400 DNP3 DOS Vulnerability

OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on September 11, 2014, and is being released to the NCCIC/ICS-CERT web site. Independent researcher Matthew Luallen of CYBATI has identified a denial-of-service DoS vulnerability to the DNP3 implementation of the...

CVE-2012-6442

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that instructs the product to reset, a DoS can occur. This situation could cause loss of availability and a disruption of communicatio...

CVE-2012-6435

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that instructs the CPU to stop logic execution and enter a fault state, a DoS can occur. This situation could cause loss of availabili...

Design/Logic Flaw

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...

Design/Logic Flaw

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...

CVE-2012-6439 Rockwell Automation ControlLogix PLC Improper Access Control

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that changes the product’s configuration and network parameters, a DoS condition can occur. This situation could cause loss of...

CVE-2012-6441 Rockwell Automation ControlLogix PLC Information Exposure

An information exposure of confidential information results when the device receives a specially crafted CIP packet to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP. Successful exploitation of this vulnerability could cause loss of confidentiality. Rockwell Automation EtherNet/I...

CVE-2012-6435

CVE-2012-6435 affects Rockwell Automation EtherNet/IP products (e.g., 1756-ENBT/ENBT, 1768-ENBT/EWEB, CompactLogix L32E/L35E, 1788-ENBT, 1794-AENTR, MicroLogix 1100/1400, and various ControlLogix/GuardLogix/SoftLogix platforms). The issue allows a CIP message from an unauthorized source to ports ...

PT-2013-1950

Name of the Vulnerable Software and Affected Versions Rockwell Automation EtherNet/IP products versions 18 and earlier Rockwell Automation EtherNet/IP products versions 19 and earlier Rockwell Automation EtherNet/IP products versions 20 and earlier 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB...

CVE-2012-4690

Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, 1400, and 1500; SLC 500 controller platform; and PLC-5 controller platform, when Static status is not enabled, allow remote attackers to cause a denial of service via messages that trigger modification of status bits...

CVE-2012-4690

Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, 1400, and 1500; SLC 500 controller platform; and PLC-5 controller platform, when Static status is not enabled, allow remote attackers to cause a denial of service via messages that trigger modification of status bits...

CVE-2012-4690

The CVE-2012-4690 vulnerability affects Rockwell Automation Allen-Bradley MicroLogix devices (1100/1200/1400/1500) and the SLC 500 and PLC‑5 controller platforms. When Static status is not enabled, attackers can remotely send crafted messages that modify status bits, causing the controller to fau...

MicroLogix 1100 PLC Default Credentials

The remote device appears to be a MicroLogix 1100 PLC that can be accessed using default HTTP credentials. An attacker could leverage this issue to gain administrative access to the affected device. Binary data scadamicrologixdefaulthttp.nbin...

Rockwell Automation PLC - Micrologix Controller Version Detection (SCADA)

Binary data 6286.prm...

Rockwell Automation Allen-Bradley MicroLogix PLC authentication and authorization vulnerabilities

Overview Rockwell Automation Allen-Bradley MicroLogix programmable logic controllers PLCs do not adequately authenticate or authorize remote connections or commands. An attacker with network access can obtain the management password or issue commands that bypass the authentication mechanism...

CVE-2009-3739

Multiple unspecified vulnerabilities on the Rockwell Automation AB Micrologix 1100 and 1400 controllers allow remote attackers to obtain privileged access or cause a denial of service halt via unknown vectors...

CVE-2009-3739

The CVE-2009-3739 entry applies to Rockwell Automation Allen-Bradley MicroLogix 1100 and MicroLogix 1400 controllers. Public sources describe multiple vulnerabilities that could allow remote attackers to obtain privileged access or cause a denial of service, via unspecified vectors. Reported impa...