CVE-2013-2805

Name of the Vulnerable Software and Affected Versions Rockwell Automation RSLinx Enterprise Software versions CPR9 through CPR9-SR6

Description The issue arises from incorrect handling of input by the LogReceiver.exe service, resulting in a logic error when it receives a datagram with an incorrect value in the Record Data Size field. An attacker can exploit this by sending a modified datagram over Port 4444/UDP, causing an out-of-bounds read access violation that leads to a service crash. The service can be recovered with a manual reboot.

Recommendations For versions CPR9 through CPR9-SR6, apply the patches and follow the details provided in the Rockwell Automation Security Advisory to resolve the issue. As a temporary workaround, consider restricting access to Port 4444/UDP to minimize the risk of exploitation.