Rockwellautomation Ab Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow on Rockwell Automation Allen-Bradley MicroLogix 1100 devices A through 15.000 and B before 15.002 allows remote attackers to execute arbitrary code via a crafted web request. File data ot500167.nasl...

Yokogawa B\/m9000cs Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in BKESimmgr.exe in the Expanded Test Functions package in Yokogawa CENTUM CS 1000, CENTUM CS 3000 Entry Class R3.09.50 and earlier, CENTUM VP R5.03.00 and earlier, CENTUM VP Entry Class R5.03.00 and earlier, Exaopc R3.71.02 and earlier, B/M9000CS R5.05.01 and earlier,...

Honeywellprocess Enterprise Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in the HMIWeb Browser HSCDSPRenderDLL ActiveX control in Honeywell Process Solutions HPS Experion R2xx, R30x, R31x, and R400.x; Honeywell Building Solutions HBS Enterprise Building Manager R400 and R410.1; and Honeywell Environmental Combustion and Controls ECC Symmetr...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a UDP packet with a certain integer...

Yokogawa Centum Improper Restriction of Operations within the Bounds of a Memory Buffer

Heap-based buffer overflow in BKCLogSvr.exe in Yokogawa CENTUM CS 3000 R3.09.50 and earlier allows remote attackers to execute arbitrary code via crafted UDP packets. File data ot500149.nasl...

Rockwellautomation Controllogix Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote threat actor to intentionally send a malformed CIP packet to Port 44818, causing the software application to stop responding and crash. This vulnerability also has the potential to exploit a buffe...

Rockwellautomation Rslogix Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in Rockwell Automation RSLogix Micro Starter Lite, RSLogix Micro Developer, RSLogix 500 Starter Edition, RSLogix 500 Standard Edition, and RSLogix 500 Professional Edition allows remote attackers to execute arbitrary code via a crafted RSS project file. File data ot500325.nasl...

Rockwell_automation Softlogix Improper Restriction of Operations within the Bounds of a Memory Buffer

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 excluding all firmware versions prior to FRN 16.00, which are not affected. By sending malformed common industrial protocol CIP packet, an attacker may be able to overflow a...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

A vulnerability was found in Rockwell Automation RSLinx Classic versions 4.10.00 and prior. An input validation issue in a .dll file of RSLinx Classic where the data in a Forward Open service request is passed to a fixed size buffer, allowing an attacker to exploit a stack-based buffer overflow...

Windriver Vxworks Improper Restriction of Operations within the Bounds of a Memory Buffer

Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component issue 2 of 4. This is an IPNET security vulnerability: TCP Urgent Pointer state confusion caused by a malformed TCP AO option. File data ot500292.nasl...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlier in Rockwell Automation RSLinx Classic before 2.58 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a malformed .eds file...

Schneider-electric Monitor Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in the UnitelWay Windows Device Driver, as used in Schneider Electric Unity Pro 6 and earlier, OPC Factory Server 3.34, Vijeo Citect 7.20 and earlier, Telemecanique Driver Pack 2.6 and earlier, Monitor Pro 7.6 and earlier, and PL7 Pro 4.5 and earlier, allows local users, and...

Schneider-electric Somachine Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in an unspecified DLL file in a DTM development kit in Schneider Electric Unity Pro, SoMachine, SoMove, SoMove Lite, Modbus Communication Library 2.2.6 and earlier, CANopen Communication Library 1.0.2 and earlier, EtherNet/IP Communication Library 1.0.0 and earlier, EM...

Schneider-electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer

The Schneider Electric M340 BMXNOE01xx and BMXP3420xx PLC modules allow remote authenticated users to cause a denial of service module crash via crafted FTP traffic, as demonstrated by the FileZilla FTP client. File data ot500046.nasl...

Yokogawa Exaopc Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in BKFSimvhfd.exe in Yokogawa CENTUM CS 1000, CENTUM CS 3000 R3.09.50 and earlier, CENTUM VP R5.03.20 and earlier, Exaopc R3.72.00 and earlier, B/M9000CS R5.05.01 and earlier, and B/M9000 VP R7.03.01 and earlier, when FCS/Test Function is enabled, allows remote attacke...

Schneider-electric M580 Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-119: Buffer errors vulnerability exists in Modicon M580 with firmware prior to V2.50, Modicon M340 with firmware prior to V3.01, BMxCRA312xx with firmware prior to V2.40, All firmware versions of Modicon Premium and 140CRA312xxx when sending a specially crafted Modbus packet, which could caus...

Schneider-electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer

A CWE-501: Trust Boundary Violation vulnerability on connection to the Controller exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause unauthorized access by conducting a brute force attack on Modbus protocol to the controller. File data...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote, unauthenticated threat actor to intentionally send a malformed CIP packet to Port 44818, causing the RSLinx Classic application to terminate. The user will need to manually restart the software t...

Siemens Simatic Improper Restriction of Operations within the Bounds of a Memory Buffer

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service defect-mode transition and control outage via crafted packets to TCP port 102 aka the ISO-TSAP port. File data ot500131.nasl...