Sign-up

ID

VAR-201106-0233


CVE

CVE-2011-2530


TITLE

RSLinx Classic EDS Hardware Installation Tool Remote Buffer Overflow Vulnerability

Trust: 1.1

sources: IVD: 71f3db24-1f93-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2090 // BID: 48092

DESCRIPTION

Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlier in Rockwell Automation RSLinx Classic before 2.58 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed .eds file. RSLinx Classic connects RSLogix and RSNetWorx products to Rockwell Automation networks and devices, and is also an OPC server. Execute arbitrary code. RSLinx Classic is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Failed exploit attempts will likely cause denial-of-service conditions. RSLinx Classic 1.0.5.1 is vulnerable; other versions may also be affected

Trust: 4.32

sources: NVD: CVE-2011-2530 // CERT/CC: VU#127584 // JVNDB: JVNDB-2011-001709 // JVNDB: JVNDB-2011-003484 // CNVD: CNVD-2011-2090 // BID: 48092 // IVD: dcb7af98-2354-11e6-abef-000c29c66e3d // IVD: 71f3db24-1f93-11e6-abef-000c29c66e3d // VULHUB: VHN-50475

IOT TAXONOMY

category:['ICS', 'Network device']sub_category: -

Trust: 0.6

category:['ICS']sub_category: -

Trust: 0.4

sources: IVD: dcb7af98-2354-11e6-abef-000c29c66e3d // IVD: 71f3db24-1f93-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2090

AFFECTED PRODUCTS

vendor:rockwell automationmodel:rslinx classic eds hardware installation toolscope:lteversion:1.0.5.1

Trust: 1.6

vendor:rockwellautomationmodel:rslinxscope:ltversion:2.58

Trust: 1.0

vendor:rockwellautomationmodel:eds hardware installation toolscope:lteversion:1.0.5.1

Trust: 1.0

vendor:rockwell automationmodel: - scope: - version: -

Trust: 0.8

vendor:rockwell automationmodel:rslinx classicscope:ltversion:2.58

Trust: 0.8

vendor:rockwallmodel:automation rslinx classicscope:eqversion:1.0.5.1

Trust: 0.6

vendor:rockwellautomationmodel:rslinxscope:eqversion:2.50.00

Trust: 0.6

vendor:rockwellautomationmodel:rslinxscope:eqversion:2.57.00

Trust: 0.6

vendor:rockwellautomationmodel:rslinxscope:eqversion:2.43.01

Trust: 0.6

vendor:rockwellautomationmodel:rslinxscope:eqversion:2.53.00

Trust: 0.6

vendor:rockwellautomationmodel:rslinxscope:eqversion:2.52.00

Trust: 0.6

vendor:rockwellautomationmodel:rslinxscope:eqversion:2.54.00

Trust: 0.6

vendor:rockwellautomationmodel:rslinxscope:eqversion:2.55.00

Trust: 0.6

vendor:rockwellautomationmodel:eds hardware installation toolscope:eqversion:1.0.5.1

Trust: 0.6

vendor:rockwellautomationmodel:rslinxscope:eqversion:2.56.00

Trust: 0.6

vendor:rockwellautomationmodel:rslinxscope:eqversion:2.51.00

Trust: 0.6

vendor:rslinxmodel: - scope:eqversion:*

Trust: 0.4

vendor:eds hardware installation toolmodel: - scope:eqversion:*

Trust: 0.4

vendor:rockwellmodel:automation rslinx classicscope:eqversion:1.0.5.1

Trust: 0.3

sources: IVD: dcb7af98-2354-11e6-abef-000c29c66e3d // IVD: 71f3db24-1f93-11e6-abef-000c29c66e3d // CERT/CC: VU#127584 // CNVD: CNVD-2011-2090 // BID: 48092 // JVNDB: JVNDB-2011-001709 // JVNDB: JVNDB-2011-003484 // CNNVD: CNNVD-201106-259 // NVD: CVE-2011-2530

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2011-2530
value: HIGH

Trust: 1.0

CARNEGIE MELLON: VU#127584
value: 0.03

Trust: 0.8

NVD: CVE-2011-2530
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201106-259
value: CRITICAL

Trust: 0.6

IVD: dcb7af98-2354-11e6-abef-000c29c66e3d
value: CRITICAL

Trust: 0.2

IVD: 71f3db24-1f93-11e6-abef-000c29c66e3d
value: CRITICAL

Trust: 0.2

VULHUB: VHN-50475
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2011-2530
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

IVD: dcb7af98-2354-11e6-abef-000c29c66e3d
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

IVD: 71f3db24-1f93-11e6-abef-000c29c66e3d
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-50475
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: IVD: dcb7af98-2354-11e6-abef-000c29c66e3d // IVD: 71f3db24-1f93-11e6-abef-000c29c66e3d // CERT/CC: VU#127584 // VULHUB: VHN-50475 // JVNDB: JVNDB-2011-003484 // CNNVD: CNNVD-201106-259 // NVD: CVE-2011-2530

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.9

sources: VULHUB: VHN-50475 // JVNDB: JVNDB-2011-003484 // NVD: CVE-2011-2530

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201106-259

TYPE

Buffer overflow

Trust: 1.0

sources: IVD: dcb7af98-2354-11e6-abef-000c29c66e3d // IVD: 71f3db24-1f93-11e6-abef-000c29c66e3d // CNNVD: CNNVD-201106-259

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2011-001709

PATCH
title:RSLinx Classic Overview from Rockwell Softwareurl:http://www.rockwellautomation.com/rockwellsoftware/design/rslinx
Trust: 0.8
title:Rockwell Automation's security advisory (Registered Users Only)url:http://rockwellautomation.custhelp.com/app/utils/login_form/redirect/answers%252Fdetail%252Fa_id%252F279194
Trust: 0.8
title:Rockwell Automation's Patch Aid 276774 (Registered Users Only)url:http://rockwellautomation.custhelp.com/app/utils/login_form/redirect/answers%252Fdetail%252Fa_id%252F276774
Trust: 0.8
title:RSLinx Classicurl:http://jp.rockwellautomation.com/applications/gs/ap/gsjp.nsf/pages/RSLinxClassic
Trust: 0.8
title:RSLinx Classic EDS Hardware Installation Tool Patch for Remote Buffer Overflow Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/4018
Trust: 0.6
title:Setup_RAid276774url:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=41038
Trust: 0.6
title:RAid276774Binaryurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=41037
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2011-2090 // 
            
            
            
            JVNDB: JVNDB-2011-001709 // 
            
            
            
            JVNDB: JVNDB-2011-003484 // 
            
            
            
            CNNVD: CNNVD-201106-259

EXTERNAL IDS
db:CERT/CCid:VU#127584
Trust: 5.0
db:NVDid:CVE-2011-2530
Trust: 3.2
db:BIDid:48092
Trust: 2.6
db:CNNVDid:CNNVD-201106-259
Trust: 1.1
db:CNVDid:CNVD-2011-2090
Trust: 0.8
db:ICS CERTid:ICSA-11-161-01
Trust: 0.8
db:JVNDBid:JVNDB-2011-001709
Trust: 0.8
db:JVNDBid:JVNDB-2011-003484
Trust: 0.8
db:IVDid:DCB7AF98-2354-11E6-ABEF-000C29C66E3D
Trust: 0.2
db:IVDid:71F3DB24-1F93-11E6-ABEF-000C29C66E3D
Trust: 0.2
db:VULHUBid:VHN-50475
Trust: 0.1
sources:
            
            
            IVD: dcb7af98-2354-11e6-abef-000c29c66e3d // 
            
            
            
            IVD: 71f3db24-1f93-11e6-abef-000c29c66e3d // 
            
            
            
            CERT/CC: VU#127584 // 
            
            
            
            CNVD: CNVD-2011-2090 // 
            
            
            
            VULHUB: VHN-50475 // 
            
            
            
            BID: 48092 // 
            
            
            
            JVNDB: JVNDB-2011-001709 // 
            
            
            
            JVNDB: JVNDB-2011-003484 // 
            
            
            
            CNNVD: CNNVD-201106-259 // 
            
            
            
            NVD: CVE-2011-2530

REFERENCES
url:http://www.kb.cert.org/vuls/id/127584
Trust: 4.2
url:http://rockwellautomation.custhelp.com/app/answers/detail/a_id/279194
Trust: 3.3
url:http://www.kb.cert.org/vuls/id/mapg-8g9pwx
Trust: 2.5
url:http://www.securityfocus.com/bid/48092
Trust: 1.7
url:http://rockwellautomation.custhelp.com/app/answers/detail/a_id/276774
Trust: 0.8
url:http://rockwellautomation.custhelp.com/app/answers/detail/a_id/54102
Trust: 0.8
url:http://www.us-cert.gov/control_systems/pdf/icsa-11-161-01.pdf
Trust: 0.8
url:http://jvn.jp/cert/jvnvu127584
Trust: 0.8
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-2530
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-2530
Trust: 0.8
url:http://www.rockwellautomation.com/rockwellsoftware/design/rslinx/
Trust: 0.3
sources:
            
            
            CERT/CC: VU#127584 // 
            
            
            
            CNVD: CNVD-2011-2090 // 
            
            
            
            VULHUB: VHN-50475 // 
            
            
            
            BID: 48092 // 
            
            
            
            JVNDB: JVNDB-2011-001709 // 
            
            
            
            JVNDB: JVNDB-2011-003484 // 
            
            
            
            CNNVD: CNNVD-201106-259 // 
            
            
            
            NVD: CVE-2011-2530

CREDITS
Michael Orlando of CERT/CC
Trust: 0.3
sources:
            
            
            BID: 48092

SOURCES
db:IVDid:dcb7af98-2354-11e6-abef-000c29c66e3d
db:IVDid:71f3db24-1f93-11e6-abef-000c29c66e3d
db:CERT/CCid:VU#127584
db:CNVDid:CNVD-2011-2090
db:VULHUBid:VHN-50475
db:BIDid:48092
db:JVNDBid:JVNDB-2011-001709
db:JVNDBid:JVNDB-2011-003484
db:CNNVDid:CNNVD-201106-259
db:NVDid:CVE-2011-2530

LAST UPDATE DATE
2025-04-11T23:18:59.964000+00:00

SOURCES UPDATE DATE
db:CERT/CCid:VU#127584date:2011-08-18T00:00:00
db:CNVDid:CNVD-2011-2090date:2011-06-03T00:00:00
db:VULHUBid:VHN-50475date:2018-04-10T00:00:00
db:BIDid:48092date:2015-04-13T21:01:00
db:JVNDBid:JVNDB-2011-001709date:2011-06-17T00:00:00
db:JVNDBid:JVNDB-2011-003484date:2011-12-22T00:00:00
db:CNNVDid:CNNVD-201106-259date:2011-06-23T00:00:00
db:NVDid:CVE-2011-2530date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:IVDid:dcb7af98-2354-11e6-abef-000c29c66e3ddate:2011-06-23T00:00:00
db:IVDid:71f3db24-1f93-11e6-abef-000c29c66e3ddate:2011-06-03T00:00:00
db:CERT/CCid:VU#127584date:2011-06-02T00:00:00
db:CNVDid:CNVD-2011-2090date:2011-06-03T00:00:00
db:VULHUBid:VHN-50475date:2011-06-22T00:00:00
db:BIDid:48092date:2011-06-02T00:00:00
db:JVNDBid:JVNDB-2011-001709date:2011-06-17T00:00:00
db:JVNDBid:JVNDB-2011-003484date:2011-12-22T00:00:00
db:CNNVDid:CNNVD-201106-259date:2011-06-23T00:00:00
db:NVDid:CVE-2011-2530date:2011-06-22T21:55:02.230