RnaUtility.dll in RsvcHost.exe 2.30.0.23 in Rockwell RSLogix 19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted rna packet with a long string to TCP port 4446 that triggers (1) "a memset zero overflow" or (2) an out-of-bounds read, related to improper handling of a 32-bit size field.
References
Configurations
Information
Published : 2011-09-16 07:28
Updated : 2017-08-28 18:30
NVD link : CVE-2011-3489
Mitre link : CVE-2011-3489
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
rockwellautomation
- rslogix