3 matches found
CVE-2020-6087
An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can send a malicious...
Rockwell Automation 1794-AENT Flex I/O Series B
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: 1794-AENT Flex I/O Series B Vulnerabilities: Classic Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could crash the device being...
CVE-2020-6087
CVE-2020-6087 affects Allen-Bradley Flex IO 1794-AENT/B (Series B) via the ENIP Request Path Data Segment. The vulnerability occurs when the ANSI Extended Symbol Segment Sub-Type is used; the following byte is treated as the Data Size in words, and if it exceeds the packet data, the device faults...