An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device power cycle resulting in a fault state and deletion of ladder logic. An attacker can send one unauthenticated packet to trigger this vulnerability
References
Link | Resource |
---|---|
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0440 | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2018-04-05 14:29
Updated : 2022-04-19 12:15
NVD link : CVE-2017-12088
Mitre link : CVE-2017-12088
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
rockwellautomation
- micrologix_1400_b_firmware
- micrologix_1400