ID

VAR-E-201301-0013


CVE

cve_id:CVE-2012-6436

Trust: 0.3

cve_id:CVE-2012-6438

Trust: 0.3

cve_id:CVE-2012-6437

Trust: 0.3

cve_id:CVE-2012-6440

Trust: 0.3

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

TITLE

Rockwell Automation ControlLogix CVE-2012-6436 Remote Denial of Service Vulnerability

Trust: 1.2

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

DESCRIPTION

Rockwell Automation ControlLogix is prone to a denial-of-service vulnerability.
An attacker can exploit this issue to cause the NIC to crash, denying service to legitimate users.

Trust: 1.2

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

AFFECTED PRODUCTS

vendor:rockwellmodel:automation softlogixscope:eqversion:19

Trust: 1.2

vendor:rockwellmodel:automation softlogixscope:eqversion:18

Trust: 1.2

vendor:rockwellmodel:automation micrologixscope:eqversion:14000

Trust: 1.2

vendor:rockwellmodel:automation micrologixscope:eqversion:11000

Trust: 1.2

vendor:rockwellmodel:automation guardlogixscope:eqversion:20

Trust: 1.2

vendor:rockwellmodel:automation guardlogixscope:eqversion:18

Trust: 1.2

vendor:rockwellmodel:automation compactlogix l35escope: - version: -

Trust: 1.2

vendor:rockwellmodel:automation compactlogix l32escope: - version: -

Trust: 1.2

vendor:rockwellmodel:automation compactlogixscope:eqversion:19

Trust: 1.2

vendor:rockwellmodel:automation compactlogixscope:eqversion:18

Trust: 1.2

vendor:rockwellmodel:automation 1794-aentrscope:eqversion:0

Trust: 1.2

vendor:rockwellmodel:automation 1788-enbtscope:eqversion:0

Trust: 1.2

vendor:rockwellmodel:automation 1768-ewebscope:eqversion:0

Trust: 1.2

vendor:rockwellmodel:automation 1768-enbtscope:eqversion:0

Trust: 1.2

vendor:rockwellmodel:automation 1756-enbtscope:eqversion:0

Trust: 1.2

vendor:rockwellmodel:automation 1756-en2t series bscope:eqversion:0

Trust: 1.2

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

EXPLOIT

To exploit this issue, attackers can use readily available network utilities.

Trust: 1.2

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

PRICE

Free

Trust: 1.2

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

TYPE

Design Error

Trust: 1.2

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

CREDITS

Rubén Santamarta

Trust: 1.2

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

EXTERNAL IDS

db:ICS CERTid:ICSA-13-011-03

Trust: 1.2

db:NVDid:CVE-2012-6436

Trust: 0.3

db:BIDid:57311

Trust: 0.3

db:NVDid:CVE-2012-6438

Trust: 0.3

db:BIDid:57310

Trust: 0.3

db:NVDid:CVE-2012-6437

Trust: 0.3

db:BIDid:57317

Trust: 0.3

db:NVDid:CVE-2012-6440

Trust: 0.3

db:BIDid:57315

Trust: 0.3

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

REFERENCES

url:http://www.us-cert.gov/control_systems/pdf/icsa-13-011-03.pdf

Trust: 1.2

url:http://www.rockwellautomation.com/

Trust: 1.2

sources: BID: 57311 // BID: 57310 // BID: 57317 // BID: 57315

SOURCES

db:BIDid:57311
db:BIDid:57310
db:BIDid:57317
db:BIDid:57315

LAST UPDATE DATE

2022-07-27T09:27:35.762000+00:00


SOURCES UPDATE DATE

db:BIDid:57311date:2013-01-11T00:00:00
db:BIDid:57310date:2013-01-11T00:00:00
db:BIDid:57317date:2013-01-11T00:00:00
db:BIDid:57315date:2013-01-11T00:00:00

SOURCES RELEASE DATE

db:BIDid:57311date:2013-01-11T00:00:00
db:BIDid:57310date:2013-01-11T00:00:00
db:BIDid:57317date:2013-01-11T00:00:00
db:BIDid:57315date:2013-01-11T00:00:00