CVE-2020-5802
First published: Tue Dec 29 2020(Updated: )
An attacker-controlled memory allocation size can be passed to the C++ new operator in RnaDaSvr.dll by sending a specially crafted ConfigureItems message to TCP port 4241. This will cause an unhandled exception, resulting in termination of RSLinxNG.exe. Observed in FactoryTalk 6.11. All versions of FactoryTalk Linx are affected.
Credit: vulnreport@tenable.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Rockwellautomation Factorytalk Linx | <=6.11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-5802?
CVE-2020-5802 is a vulnerability in RnaDaSvr.dll in Rockwell Automation FactoryTalk Linx that allows an attacker to pass an attacker-controlled memory allocation size to the C++ new operator, resulting in termination of RSLinxNG.exe.
How does CVE-2020-5802 affect Rockwell Automation FactoryTalk Linx?
CVE-2020-5802 affects Rockwell Automation FactoryTalk Linx version 6.11, causing an unhandled exception and termination of RSLinxNG.exe.
What is the severity of CVE-2020-5802?
CVE-2020-5802 has a severity rating of 7.5, indicating a high severity vulnerability.
How can an attacker exploit CVE-2020-5802?
An attacker can exploit CVE-2020-5802 by sending a specially crafted ConfigureItems message to TCP port 4241, which allows them to pass an attacker-controlled memory allocation size and cause an unhandled exception in RnaDaSvr.dll.
Is there a fix for CVE-2020-5802?
Currently, there is no known fix for CVE-2020-5802. It is recommended to follow Rockwell Automation's security advisory and apply any updates or patches as they become available.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- vendor/rockwellautomation
- canonical/rockwellautomation factorytalk linx
- version/rockwellautomation factorytalk linx/6.11