PT-2015-4162 · Rockwell Automation · Factorytalk Services Platform+1

Published

2015-03-31

Updated

2015-03-31

CVE-2014-9209

CVSS v2.0

6.9

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Rockwell Automation FactoryTalk Services Platform versions prior to 2.71.00 Rockwell Automation FactoryTalk View Studio versions 8.00.00 and earlier

Description The issue is related to an untrusted search path vulnerability in the Clean Utility application. This vulnerability allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.

Recommendations For Rockwell Automation FactoryTalk Services Platform versions prior to 2.71.00, update to version 2.71.00 or later. For Rockwell Automation FactoryTalk View Studio versions 8.00.00 and earlier, update to a version later than 8.00.00.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2014-9209

Affected Products

Factorytalk Services Platform

Factorytalk View Studio

PT-2015-4162 · Rockwell Automation · Factorytalk Services Platform+1

CVE-2014-9209

Related Identifiers

Affected Products

References · 3