An attacker can craft and send an OpenNamespace message to port 4241 with valid session-id that triggers an unhandled exception in CFTLDManager::HandleRequest function in RnaDaSvr.dll, resulting in process termination. Observed in FactoryTalk Linx 6.11. All versions of FactoryTalk Linx are affected.
References
Link | Resource |
---|---|
https://www.tenable.com/security/research/tra-2020-71 | Third Party Advisory |
Configurations
Information
Published : 2020-12-29 08:15
Updated : 2020-12-30 10:13
NVD link : CVE-2020-5801
Mitre link : CVE-2020-5801
JSON object : View
CWE
CWE-755
Improper Handling of Exceptional Conditions
Products Affected
rockwellautomation
- factorytalk_linx