Details of VAR-201307-0485

ID

VAR-201307-0485

TITLE

Rockwell Automation RSLinx Enterprise LogReceiver Service Integer Overflow Vulnerability

Trust: 0.8

sources: IVD: c46d2de4-1f19-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-09106

DESCRIPTION

RSLinx Enterprise is a standard OPC server software that bridges the communication between RSView Server and PLC. The RSLinx Enterprise LogReceiver service does not properly check the record data size field when parsing received packets. The remote attacker can use this vulnerability to submit a specially crafted request to trigger an integer overflow, which can crash the service and cause a denial of service attack

Trust: 0.72

sources: CNVD: CNVD-2013-09106 // IVD: c46d2de4-1f19-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: c46d2de4-1f19-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-09106

AFFECTED PRODUCTS

vendor:	rockwell	model:	automation rslinx enterprise	scope:	-	version:	-	Trust: 0.6
vendor:	rockwell	model:	automation rslinx enterprise	scope:	eq	version:	*	Trust: 0.2

sources: IVD: c46d2de4-1f19-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-09106

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2013-09106
value:	MEDIUM
Trust: 0.6
IVD:	c46d2de4-1f19-11e6-abef-000c29c66e3d
value:	MEDIUM
Trust: 0.2

CNVD:	CNVD-2013-09106
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	c46d2de4-1f19-11e6-abef-000c29c66e3d
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

sources: IVD: c46d2de4-1f19-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-09106

TYPE

Number error

Trust: 0.2

sources: IVD: c46d2de4-1f19-11e6-abef-000c29c66e3d

PATCH

title:

Rockwell Automation RSLinx Enterprise LogReceiver Service Patch for Integer Overflow Vulnerability

url:

https://www.cnvd.org.cn/patchinfo/show/35016

Trust: 0.6

sources: CNVD: CNVD-2013-09106

EXTERNAL IDS

db:	CNVD	id:	CNVD-2013-09106	Trust: 0.8
db:	IVD	id:	C46D2DE4-1F19-11E6-ABEF-000C29C66E3D	Trust: 0.2

sources: IVD: c46d2de4-1f19-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-09106

REFERENCES

url:

https://rockwellautomation.custhelp.com/app/answers/detail/a_id/537599

Trust: 0.6

sources: CNVD: CNVD-2013-09106

SOURCES

db:	IVD	id:	c46d2de4-1f19-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2013-09106

LAST UPDATE DATE

2022-05-17T02:08:09.949000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2013-09106

date:

2013-07-10T00:00:00

SOURCES RELEASE DATE

db:	IVD	id:	c46d2de4-1f19-11e6-abef-000c29c66e3d	date:	2013-07-10T00:00:00
db:	CNVD	id:	CNVD-2013-09106	date:	2013-07-10T00:00:00