CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2019/11/08 12:0 a.m.•18 views

Rockwellautomation Rslinx Out-of-bounds Read

7.8CVSS1.3AI score0.00034EPSS

Prion•added 2019/03/26 6:29 p.m.•17 views

Design/Logic Flaw

Rockwell Automation RSLinx Enterprise Software LogReceiver.exe CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logic error if it receives a datagram with an incorrect value in the “Record Data Size” field. By sendin...

7.8CVSS6.7AI score0.00034EPSS

NVD•added 2019/03/26 5:29 p.m.•13 views

CVE-2013-2806

7.8CVSS7.8AI score0.00048EPSS

NVD•added 2019/03/26 5:29 p.m.•13 views

CVE-2013-2807

7.8CVSS7.6AI score0.00034EPSS

Prion•added 2019/03/26 5:29 p.m.•13 views

Out-of-bounds

7.8CVSS7AI score0.00034EPSS

CVE•added 2019/03/26 5:4 p.m.•52 views

CVE-2013-2805

CVE-2013-2805 affects Rockwell Automation RSLinx Enterprise Software (LogReceiver.exe) CPR9 through CPR9-SR6. The issue is an input validation/size handling flaw: sending a UDP datagram to port 4444 with an oversized Record Data Size field can trigger an out-of-bounds read, potentially causing a ...

7.8CVSS7.2AI score0.00034EPSS

Cvelist•added 2019/03/26 5:4 p.m.•13 views

CVE-2013-2805

Rockwell Automation RSLinx Enterprise Software LogReceiver.exe CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logic error if it receives a datagram with an incorrect value in the “Record Data Size” field. By sendin...

7.3AI score0.00034EPSS

Cvelist•added 2019/03/26 4:47 p.m.•18 views

CVE-2013-2806

7.8AI score0.00048EPSS

CVE•added 2019/03/26 4:35 p.m.•51 views

CVE-2013-2807

CVE-2013-2807 affects Rockwell Automation RSLinx Enterprise (LogReceiver.exe) across CPR9 to CPR9-SR6. The vulnerability stems from improper input handling for the Record Data Size field, enabling an oversized Datagram on UDP port 4444 that causes the service to undersize Total Record Size, trigg...

7.8CVSS7.5AI score0.00034EPSS

Cvelist•added 2019/03/26 4:35 p.m.•16 views

CVE-2013-2807

7.6AI score0.00034EPSS

NVD•added 2013/04/18 11:33 a.m.•10 views

CVE-2012-4715

Buffer overflow in LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a UDP packet with a certain integer...

10CVSS8.2AI score0.00266EPSS

Prion•added 2013/04/18 11:33 a.m.•12 views

Buffer overflow

10CVSS8.9AI score0.00266EPSS

CVE•added 2013/04/18 10:0 a.m.•50 views

CVE-2012-4715

Rockwell Automation RSLinx Enterprise CPR9 through CPR9-SR6 is affected by CVE-2012-4715 due to a buffer overflow in LogReceiver.exe that can be triggered by UDP packets with improper length values, potentially causing a DoS or arbitrary code execution via Logger.dll. The vulnerability is exploit...

10CVSS8.4AI score0.00266EPSS

Cvelist•added 2013/04/18 10:0 a.m.•20 views

CVE-2012-4715

8.2AI score0.00266EPSS

Prion•added 2013/04/18 2:25 a.m.•15 views

Code injection

LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service service outage via a zero-byte UDP packet that is not properly handled by Logger.dll...

7.1CVSS7.1AI score0.00018EPSS

CVE•added 2013/04/18 1:0 a.m.•48 views

CVE-2012-4695

CVE-2012-4695 affects Rockwell Automation RSLinx Enterprise CPR9 and CPR9-SR1 to CPR9-SR6. Vulnerability lies in LogReceiver.exe and Logger.dll, where a zero-byte UDP datagram (and related input handling) can trigger a DoS (service outage) remotely. The ICS-CERT advisory describes multiple input-...

7.1CVSS6.7AI score0.00018EPSS

Cvelist•added 2013/04/18 1:0 a.m.•15 views

CVE-2012-4695

7.4AI score0.00018EPSS