high
7.8
CWE
400
Advisory Published
Updated

CVE-2017-6017

First published: Fri Jun 30 2017(Updated: )

A Resource Exhaustion issue was discovered in Schneider Electric Modicon M340 PLC BMXNOC0401, BMXNOE0100, BMXNOE0110, BMXNOE0110H, BMXNOR0200H, BMXP341000, BMXP342000, BMXP3420102, BMXP3420102CL, BMXP342020, BMXP342020H, BMXP342030, BMXP3420302, BMXP3420302H, and BMXP342030H. A remote attacker could send a specially crafted set of packets to the PLC causing it to freeze, requiring the operator to physically press the reset button on the PLC in order to recover.

Credit: ics-cert@hq.dhs.gov ics-cert@hq.dhs.gov

Affected SoftwareAffected VersionHow to fix
Schneider-electric Bmxnoc0401 Firmware=2.8
Schneider-electric Bmxnoc0401
Schneider-electric Bmxnoe0100 Firmware=2.8
Schneider-electric Bmxnoe0100
Schneider-electric Bmxnoe0110 Firmware=2.8
Schneider-electric Bmxnoe0110
Schneider-electric Bmxnoe0110h Firmware=2.8
Schneider-electric Bmxnoe0110h
Schneider-electric Bmxnor0200h Firmware=2.8
Schneider-electric Bmxnor0200h
Schneider-electric Bmxp341000 Firmware=2.8
Schneider-electric Bmxp341000
Schneider-electric Bmxp342000 Firmware=2.8
Schneider-electric Bmxp342000
Schneider-electric Bmxp3420102 Firmware=2.8
Schneider-electric Bmxp3420102
Schneider-electric Bmxp3420102cl Firmware=2.8
Schneider-electric Bmxp3420102cl
Schneider-electric Bmxp342020 Firmware=2.8
Schneider-electric Bmxp342020
Schneider-electric Bmxp342020h Firmware=2.8
Schneider-electric Bmxp342020h
Schneider-electric Bmxp342030 Firmware=2.8
Schneider-electric Bmxp342030
Schneider-electric Bmxp3420302 Firmware=2.8
Schneider-electric Bmxp3420302
Schneider-electric Bmxp3420302h Firmware=2.8
Schneider-electric Bmxp3420302h
Schneider-electric Bmxp342030h Firmware=2.8
Schneider-electric Bmxp342030h
All of
Schneider-electric Bmxnoc0401 Firmware=2.8
Schneider-electric Bmxnoc0401
All of
Schneider-electric Bmxnoe0100 Firmware=2.8
Schneider-electric Bmxnoe0100
All of
Schneider-electric Bmxnoe0110 Firmware=2.8
Schneider-electric Bmxnoe0110
All of
Schneider-electric Bmxnoe0110h Firmware=2.8
Schneider-electric Bmxnoe0110h
All of
Schneider-electric Bmxnor0200h Firmware=2.8
Schneider-electric Bmxnor0200h
All of
Schneider-electric Modicon M340 Bmxp341000 Firmware=2.8
Schneider-electric Modicon M340 Bmxp341000
All of
Schneider-electric Modicon M340 Bmxp342000 Firmware=2.8
Schneider-electric Modicon M340 Bmxp342000
All of
Schneider-electric Modicon M340 Bmxp3420102 Firmware=2.8
Schneider-electric Modicon M340 Bmxp3420102
All of
Schneider-electric Modicon M340 Bmxp3420102cl Firmware=2.8
Schneider-electric Modicon M340 Bmxp3420102cl
All of
Schneider-electric Modicon M340 Bmxp342020 Firmware=2.8
Schneider-electric Modicon M340 Bmxp342020
All of
Schneider-electric Modicon M340 Bmxp342020h Firmware=2.8
Schneider-electric Modicon M340 Bmxp342020h
All of
Schneider-electric Modicon M340 Bmxp342030 Firmware=2.8
Schneider-electric Modicon M340 Bmxp342030
All of
Schneider-electric Modicon M340 Bmxp3420302 Firmware=2.8
Schneider-electric Modicon M340 Bmxp3420302
All of
Schneider-electric Modicon M340 Bmxp3420302h Firmware=2.8
Schneider-electric Modicon M340 Bmxp3420302h
All of
Schneider-electric Modicon M340 Bmxp342030h Firmware=2.8
Schneider-electric Modicon M340 Bmxp342030h

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203