CVE-2016-2277

Name of the Vulnerable Software and Affected Versions Rockwell Automation Integrated Architecture Builder (IAB) versions prior to 9.6.0.8 Rockwell Automation Integrated Architecture Builder (IAB) versions 9.7.x prior to 9.7.0.2

Description The issue is related to insufficient access control in the IAB.exe component, allowing remote attackers to execute arbitrary code via a crafted project file. This can be exploited by an attacker to gain unauthorized access and execute malicious code.

Recommendations For versions prior to 9.6.0.8, update to version 9.6.0.8 or later. For versions 9.7.x prior to 9.7.0.2, update to version 9.7.0.2 or later.