PT-2015-2584 · Rockwell Automation · Micrologix 1400+1

Published

2015-10-28

Updated

2015-10-28

CVE-2015-6490

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Micrologix 1100 versions before B FRN 15.000 Micrologix 1400 versions through B FRN 15.003

Description The issue is caused by a stack-based buffer overflow. This allows a remote attacker to execute arbitrary code.

Recommendations For Micrologix 1100 versions before B FRN 15.000, update to a version after B FRN 15.000. For Micrologix 1400 versions through B FRN 15.003, update to a version after B FRN 15.003.

Fix

Buffer Overflow

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-121

Related Identifiers

BDU:2015-11949

CVE-2015-6490

Affected Products

Micrologix 1100

Micrologix 1400

PT-2015-2584 · Rockwell Automation · Micrologix 1400+1

CVE-2015-6490

Weakness Enumeration

Related Identifiers

Affected Products

References · 3