CVE-2017-14462

Name of the Vulnerable Software and Affected Versions: Allen Bradley Micrologix 1400 Series B versions 21.2 and before

Description: An exploitable access control issue exists in the data, program, and function file permissions functionality. A specially crafted packet can cause a read or write operation, resulting in disclosure of sensitive information, modification of settings, or modification of ladder logic. An attacker can send unauthenticated packets to trigger this issue. The required Keyswitch State is REMOTE or PROG, and also RUN for some configurations. This allows an attacker to enable features like SNMP, Modbus, DNP, and change network parameters such as IP address, name server, and domain name.

Recommendations: For versions 21.2 and before, consider disabling remote access or restricting the Keyswitch State to prevent exploitation until a fix is available. Restrict access to the channel configuration to minimize the risk of enabling unwanted features. Avoid using the REMOTE or PROG Keyswitch State until the issue is resolved.