CVE-2016-5814

CVE-2016-5814 is a classic buffer overflow in Rockwell RSLogix products (Micro Starter Lite/Dveloper; RSLogix 500 Starter/Standard/Professional) triggered by parsing malicious RSS project files. The vulnerability is a CWE-120 flaw that allows code execution when a local user opens a crafted RSS f...

Rockwell Automation RSLogix Micro Starter Lite Project File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Rockwell Automation RSLogix Micro Starter Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...