EUVD-2018-6711

Malware in sbrugna...

Rockwell Automation Allen-Bradley Micrologix 1100

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: Allen-Bradley MicroLogix 1100 Vulnerability: Improper Handling of Length Parameter Inconsistency 2. RISK EVALUATION Successful exploitation of this vulnerability...

Rockwell Automation RSLinx Classic <= 4.00.01 Multiple Vulnerabilities (ICSA-18-263-02)

Binary data 720266.prm...

The vulnerability of the RSLinx Classic communication server arises from the execution of operations beyond the buffer boundaries in memory, allowing attackers to cause service failures.

The vulnerability of the RSLinx Classic communication server lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending a specially crafted CIP packet to port 44818...

The vulnerability of the RSLinx Classic communication server, related to uncontrolled resource consumption, allows attackers to cause service interruptions.

The vulnerability of the RSLinx Classic communication server is related to an uncontrolled resource consumption. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted Ethernet/IP packets to port 44818...

The vulnerability of the ENGINE.dll library in the RSLinx Classic communication server allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the ENGINE.dll file in the RSLinx Classic communication server is caused by buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure by sending specially crafted CIP Common Industrial Protocol...

Rockwell Automation RSLinx Classic Denial of Service Vulnerability (CNVD-2019-09766)

Rockwell Automation RSLinx Classic is a factory communications solution from Rockwell Automation. The solution supports access to Rockwell Software, Allen-Bradley applications, etc. via Allen-Bradley programmable controllers. A denial of service vulnerability exists in Rockwell Automation RSLinx...

Rockwell Automation RSLinx Classic Denial of Service Vulnerability

Rockwell Automation RSLinx Classic is a factory communications solution from Rockwell Automation. The solution supports access to Rockwell Software, Allen-Bradley applications, etc. via Allen-Bradley programmable controllers. A denial of service vulnerability exists in Rockwell Automation RSLinx...

CVE-2018-14821

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote, unauthenticated threat actor to intentionally send a malformed CIP packet to Port 44818, causing the RSLinx Classic application to terminate. The user will need to manually restart the software t...

CVE-2018-14821

Rockwell Automation RSLinx Classic versions 4.00.01 and earlier are affected by a vulnerability that allows a remote, unauthenticated attacker to send a malformed CIP packet to port 44818, causing the RSLinx Classic application to terminate and requiring manual restart. The root cause is the impr...

CVE-2018-14829

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote threat actor to intentionally send a malformed CIP packet to Port 44818, causing the software application to stop responding and crash. This vulnerability also has the potential to exploit a buffe...

CVE-2018-14821

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote, unauthenticated threat actor to intentionally send a malformed CIP packet to Port 44818, causing the RSLinx Classic application to terminate. The user will need to manually restart the software t...

Buffer overflow

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote threat actor to intentionally send a malformed CIP packet to Port 44818, causing the software application to stop responding and crash. This vulnerability also has the potential to exploit a buffe...

CVE-2018-14821

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote, unauthenticated threat actor to intentionally send a malformed CIP packet to Port 44818, causing the RSLinx Classic application to terminate. The user will need to manually restart the software t...

Design/Logic Flaw

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. A remote, unauthenticated threat actor may intentionally send specially crafted Ethernet/IP packets to Port 44818, causing the software application to stop responding and crash. The user must restart the software to regain functionali...

CVE-2018-14827

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. A remote, unauthenticated threat actor may intentionally send specially crafted Ethernet/IP packets to Port 44818, causing the software application to stop responding and crash. The user must restart the software to regain functionali...

Allen Bradley Micrologix 1400 Series B Ethernet Card Malformed Packet Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device power cycle resulting in a fault state and deletion of ladder logic. An attacker can send one...

CVE-2012-6435 Rockwell Automation ControlLogix PLC Improper Access Control

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that instructs the CPU to stop logic execution and enter a fault state, a DoS can occur. This situation could cause loss of availabili...

CVE-2012-6442 Rockwell Automation ControlLogix PLC Improper Access Control

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that instructs the product to reset, a DoS can occur. This situation could cause loss of availability and a disruption of communicatio...