PT-2012-5554 · Rockwell Automation Allen Bradley · Plc-5+2

Published

2012-12-08

Updated

2013-05-21

CVE-2012-4690

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Rockwell Automation Allen-Bradley MicroLogix controller versions 1100, 1200, 1400, and 1500 SLC 500 controller platform PLC-5 controller platform

Description The issue allows remote attackers to cause a denial of service via messages that trigger modification of status bits when Static status is not enabled.

Recommendations For Rockwell Automation Allen-Bradley MicroLogix controller versions 1100, 1200, 1400, and 1500, enable Static status to prevent modification of status bits. For SLC 500 controller platform, enable Static status to prevent modification of status bits. For PLC-5 controller platform, enable Static status to prevent modification of status bits.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-16

Related Identifiers

CVE-2012-4690

Affected Products

Micrologix

Plc-5

Sl 500

PT-2012-5554 · Rockwell Automation Allen Bradley · Plc-5+2

CVE-2012-4690

Weakness Enumeration

Related Identifiers

Affected Products

References · 5