CVE-2017-14471

Name of the Vulnerable Software and Affected Versions: Allen Bradley Micrologix 1400 Series B versions 21.2 and before

Description: The issue allows for exploitable access control due to improper permissions in data, program, and function file handling. This can be triggered by a specially crafted packet, potentially leading to the disclosure of sensitive information, modification of settings, or alteration of ladder logic. The vulnerability can be exploited by sending unauthenticated packets. The fault codes associated with this issue are 0023, 002e, and 0037, which are recoverable. The vulnerability involves the STI, EII, and HSC function files, where specific bits indicate fault occurrences or auto-start signals. When these bits are set and the device enters a run state, a fault is triggered.

Recommendations: For Allen Bradley Micrologix 1400 Series B versions 21.2 and before, consider restricting access to the device when it is in a REMOTE or PROG Keyswitch State to minimize the risk of exploitation. As a temporary workaround, avoid using the STI, EII, and HSC function files until a patch is available. Restrict access to the ladder logic modification functionality to prevent unauthorized changes.