CVE-2016-9338

Name of the Vulnerable Software and Affected Versions Rockwell Automation Allen-Bradley MicroLogix 1100 controller versions prior to 14.000 Rockwell Automation Micrologix 1400 (affected versions not specified)

Description The issue is related to an Incorrect Permission Assignment for Critical Resource in the Rockwell Automation Allen-Bradley MicroLogix 1100 controller and Rockwell Automation Micrologix 1400. This allows users with administrator privileges to remove all administrative users, requiring a factory reset to restore ancillary web server function. Exploitation of this vulnerability will still allow the affected device to function as a controller. The vulnerability is also related to insufficient access control, which can be exploited by an attacker with administrator privileges to delete all administrators, disabling additional device functions until a factory reset is performed.

Recommendations For Rockwell Automation Allen-Bradley MicroLogix 1100 controller versions prior to 14.000: Consider restricting access to the device to prevent unauthorized users from gaining administrator privileges. For Rockwell Automation Micrologix 1400: At the moment, there is no information about a newer version that contains a fix for this vulnerability.