CVE-2012-6438

The device does not properly validate the data being sent to the buffer. An attacker can send a malformed CIP packet to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP, which creates a buffer overflow and causes the NIC to crash. Successful exploitation of this vulnerability could...

Rockwell Automation/Allen-Bradley Ethernet/IP Products Buffer Overflow

Binary data 720001.prm...

CVE-2013-2825

The DNP3 service in the Outstation component on Elecsys Director Gateway devices with kernel 2.6.32.11ael1 and earlier allows remote attackers to cause a denial of service CPU consumption and communication outage via crafted input...

Input validation

The DNP3 service in the Outstation component on Elecsys Director Gateway devices with kernel 2.6.32.11ael1 and earlier allows remote attackers to cause a denial of service CPU consumption and communication outage via crafted input...

CVE-2013-2825

CVE-2013-2825 affects the DNP3 Outstation service on Elecsys Director Gateway devices (kernel 2.6.32.11ael1 and earlier). The vulnerability is due to improper input validation, allowing remote attackers to cause a denial of service (CPU load spike and communication outage) via crafted input. A pa...

CVE-2012-6439

CVE-2012-6439 affects Rockwell Automation EtherNet/IP products (e.g., 1756-ENBT/EWEB; 1768-ENBT/EWEB; CompactLogix L32E/L35E; 1788-ENBT FLEXLogix; 1794-AENTR; and various ControlLogix/GuardLogix/SoftLogix/MicroLogix series). Root cause: improper access control for CIP messages that modify configu...

PT-2013-1945

Name of the Vulnerable Software and Affected Versions Rockwell Automation EtherNet/IP products versions prior to the fixed version Rockwell Automation 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules versions prior to the fixed version Rockwell Automation CompactLogix L32E and...