CVE-2012-4690

Severity

71%

Complexity

86%

Confidentiality

115%

Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, 1400, and 1500; SLC 500 controller platform; and PLC-5 controller platform, when Static status is not enabled, allow remote attackers to cause a denial of service via messages that trigger modification of status bits.

Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, 1400, and 1500; SLC 500 controller platform; and PLC-5 controller platform, when Static status is not enabled, allow remote attackers to cause a denial of service via messages that trigger modification of status bits.

CVSS 2.0 Base Score 7.1. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:N/A:C).

Overview

Type

Rockwell Automation

First reported 12 years ago

2012-12-08 15:55:00

Last updated 11 years ago

2013-05-21 03:20:00

Affected Software

Rockwell Automation AB Micrologix Controller 1100

1100

Rockwell Automation AB Micrologix Controller 1200

1200

Rockwell Automation AB Micrologix Controller 1400

1400

Rockwell Automation AB Micrologix Controller 1500

1500

Rockwell Automation PLC-5 Controller

Rockwell Automation SLC 500 Controller

References

http://ics-cert.us-cert.gov/advisories/ICSA-12-342-01A

http://www.us-cert.gov/control_systems/pdf/ICSA-12-342-01.pdf

US Government Resource

https://rockwellautomation.custhelp.com/app/answers/detail/a_id/511407

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.