Buffer overflow in Rockwell Automation RSLogix Micro Starter Lite, RSLogix Micro Developer, RSLogix 500 Starter Edition, RSLogix 500 Standard Edition, and RSLogix 500 Professional Edition allows remote attackers to execute arbitrary code via a crafted RSS project file.
References
Link | Resource |
---|---|
https://ics-cert.us-cert.gov/advisories/ICSA-16-224-02 | Mitigation Patch Third Party Advisory US Government Resource |
http://www.securityfocus.com/bid/92983 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2016-09-18 18:59
Updated : 2016-11-28 12:29
NVD link : CVE-2016-5814
Mitre link : CVE-2016-5814
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
rockwellautomation
- rslogix_micro_developer
- rslogix_500_starter_edition
- rslogix_500_standard_edition
- rslogix_500_professional_edition
- rslogix_micro_starter_lite