4 matches found
CVE-2020-5807
An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to add entries in the FactoryTalk Diagnostics event log. The attacker can specify long fields in the log entry, which can cause an unhandled exception in wcscpys if a local user opens FactoryTalk Diagnosti...
Rockwell (CVE-2020-5807) (deprecated)
Plugin deprecated because factorytalk is not detectable in this way This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2023/03/10. Deprecated because...
CVE-2020-5807
An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to add entries in the FactoryTalk Diagnostics event log. The attacker can specify long fields in the log entry, which can cause an unhandled exception in wcscpys if a local user opens FactoryTalk Diagnosti...
CVE-2020-5807
Summary: CVE-2020-5807 affects Rockwell Automation’s FactoryTalk Diagnostics (and related components) where an unauthenticated remote actor can send data to RsvcHost.exe (TCP port 5241) to inject log entries. The attacker can craft long fields that trigger an unhandled wcscpy_s() exception when a...