Input Handling Flaw in Rockwell Automation RSLinx Enterprise Software
CVE-2013-2807

7.5HIGH

Key Information:

Vendor: Rockwell Automation
Status: Rslinx Enterprise Software
Vendor: CVE Published:; 26 March 2019

Summary

The RSLinx Enterprise Software by Rockwell Automation, specifically the LogReceiver.exe component, contains an input handling flaw that results in a logic error. When an oversized value is sent in the 'Record Data Size' field of a datagram over Port 4444/UDP, it leads to incorrect calculations of the 'Total Record Size'. This miscalculation may trigger an out-of-bounds read access violation, leading to a crash of the service. Recovery requires a manual reboot of the affected service. For detailed patches and advisories, refer to the Rockwell Automation Security Advisory.

Affected Version(s)

RSLinx Enterprise Software CPR9

RSLinx Enterprise Software CPR9-SR1

RSLinx Enterprise Software CPR9-SR2

References

https://ics-cert.us-cert.gov/advisories/ICSA-13-095-02

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 26, 2019
Vulnerability Reserved
Apr 11, 2013