First published: Thu Apr 05 2018(Updated: )
An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a device fault resulting in halted operations. An attacker can send an unauthenticated packet to trigger this vulnerability.
Credit: talos-cna@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Rockwellautomation Micrologix 1400 B Firmware | <=21.2 | |
Rockwellautomation Micrologix 1400 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for the denial of service vulnerability in Allen Bradley Micrologix 1400 Series B FRN 21.2 and before is CVE-2017-12089.
The severity of CVE-2017-12089 is high with a CVSS score of 7.5.
The denial of service vulnerability in Allen Bradley Micrologix 1400 Series B FRN 21.2 and before occurs in the program download functionality.
The impact of the denial of service vulnerability in Allen Bradley Micrologix 1400 Series B FRN 21.2 and before is the ability for an attacker to send a specially crafted packet that can cause a device fault resulting in halted operations.
At the time of this writing, there is no known fix for the denial of service vulnerability in Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. It is recommended to follow the recommendations provided by the vendor.