CVE-2013-2806

Name of the Vulnerable Software and Affected Versions Rockwell Automation RSLinx Enterprise Software versions CPR9 through CPR9-SR6

Description The issue arises from incorrect handling of input, resulting in a logic error when the "End of Current Record" field is calculated with an incorrect value. This can be triggered by sending a datagram to the service over Port 4444/UDP with a modified "Record Data Size" field set to an oversized value, causing the service to calculate an undersized "Total Record Size" and subsequently an incorrect "End of Current Record" value. This leads to access violations and a service crash, which can be recovered with a manual reboot.

Recommendations For versions CPR9 through CPR9-SR6, refer to the Rockwell Automation security advisory for patches and detailed information on resolving the issue.