Rockwellautomation Rslogix Improper Restriction of Operations within the Bounds of a Memory Buffer

RnaUtility.dll in RsvcHost.exe 2.30.0.23 in Rockwell RSLogix 19 and earlier allows remote attackers to cause a denial of service crash via a crafted rna packet with a long string to TCP port 4446 that triggers 1 "a memset zero overflow" or 2 an out-of-bounds read, related to improper handling of ...

Schneider-electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer

DISPUTED The Schneider Electric M340 PLC modules allow remote attackers to cause a denial of service resource consumption via unspecified vectors. NOTE: the vendor reportedly disputes this issue because it "could not be duplicated" and "an attacker could not remotely exploit this observed behavio...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

A vulnerability was found in Rockwell Automation RSLinx Classic versions 4.10.00 and prior. An input validation issue in a .dll file of RSLinx Classic where the data in a Forward Open service request is passed to a fixed size buffer, allowing an attacker to exploit a stack-based buffer overflow...

Schneider-electric Concept Improper Restriction of Operations within the Bounds of a Memory Buffer

Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header. File data ot500029.nasl...

Rockwellautomation Compactlogix Improper Restriction of Operations within the Bounds of a Memory Buffer

An attacker could send crafted SMTP packets to cause a denial-of-service condition where the controller enters a major non-recoverable faulted state MNRF in CompactLogix 5370 L1, L2, and L3 Controllers, Compact GuardLogix 5370 controllers, and Armor Compact GuardLogix 5370 Controllers Versions 20...

Yokogawa Exaopc Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in BKFSimvhfd.exe in Yokogawa CENTUM CS 1000, CENTUM CS 3000 R3.09.50 and earlier, CENTUM VP R5.03.20 and earlier, Exaopc R3.72.00 and earlier, B/M9000CS R5.05.01 and earlier, and B/M9000 VP R7.03.01 and earlier, when FCS/Test Function is enabled, allows remote attacke...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a UDP packet with a certain integer...

Windriver Vxworks Improper Restriction of Operations within the Bounds of a Memory Buffer

Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component issue 4 of 4. There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition. File data ot500063.nasl...

Schneider-electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer

The Schneider Electric M340 BMXNOE01xx and BMXP3420xx PLC modules allow remote authenticated users to cause a denial of service module crash via crafted FTP traffic, as demonstrated by the FileZilla FTP client. File data ot500046.nasl...

Windriver Vxworks Improper Restriction of Operations within the Bounds of a Memory Buffer

Wind River VxWorks 6.6 through 6.9 has a Buffer Overflow in the DHCP client component. There is an IPNET security vulnerability: Heap overflow in DHCP Offer/ACK parsing inside ipdhcpc. File data ot500061.nasl...

Rockwellautomation Factorytalk Improper Restriction of Operations within the Bounds of a Memory Buffer

The FactoryTalk FT RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 allows remote attackers to cause a denial of service out-of-bounds read via a crafted packet. File data ot500151.nasl...

Rockwell_automation Softlogix Improper Restriction of Operations within the Bounds of a Memory Buffer

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 excluding all firmware versions prior to FRN 16.00, which are not affected. By sending malformed common industrial protocol CIP packet, an attacker may be able to overflow a...

Yokogawa Centum Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in BKBCopyD.exe in Yokogawa CENTUM CS 3000 R3.09.50 and earlier allows remote attackers to execute arbitrary code via a crafted TCP packet. File data ot500127.nasl...

Cisco Ios Improper Restriction of Operations within the Bounds of a Memory Buffer

Multiple Buffer Overflow vulnerabilities in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated...

Rockwellautomation Rslogix Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in Rockwell Automation RSLogix Micro Starter Lite, RSLogix Micro Developer, RSLogix 500 Starter Edition, RSLogix 500 Standard Edition, and RSLogix 500 Professional Edition allows remote attackers to execute arbitrary code via a crafted RSS project file. File data ot500325.nasl...

Windriver Vxworks Improper Restriction of Operations within the Bounds of a Memory Buffer

Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the IPv4 component. There is an IPNET security vulnerability: Stack overflow in the parsing of IPv4 packets’ IP options. File data ot500279.nasl...

Schneider-electric Monitor Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in the UnitelWay Windows Device Driver, as used in Schneider Electric Unity Pro 6 and earlier, OPC Factory Server 3.34, Vijeo Citect 7.20 and earlier, Telemecanique Driver Pack 2.6 and earlier, Monitor Pro 7.6 and earlier, and PL7 Pro 4.5 and earlier, allows local users, and...

Schneider-electric M580 Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-119: Buffer errors vulnerability exists in Modicon M580 with firmware prior to V2.50, Modicon M340 with firmware prior to V3.01, BMxCRA312xx with firmware prior to V2.40, All firmware versions of Modicon Premium and 140CRA312xxx when sending a specially crafted Modbus packet, which could caus...

Windriver Vxworks Improper Restriction of Operations within the Bounds of a Memory Buffer

Wind River VxWorks has a Buffer Overflow in the TCP component issue 1 of 4. This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow. File data ot500065.nasl...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote, unauthenticated threat actor to intentionally send a malformed CIP packet to Port 44818, causing the RSLinx Classic application to terminate. The user will need to manually restart the software t...