Sign-up

ID

VAR-201609-0599


TITLE

AB 1769 PLC ARP Syntax Denial of Service Vulnerability

Trust: 0.8

sources: IVD: abcdceab-c113-42e2-aa0d-76785eb7671b // CNVD: CNVD-2016-07704

DESCRIPTION

AB 1769 PLC is an integrated industrial high-performance programmable controller. AB 1769 PLC has ARP syntax denial of service vulnerability. By modifying the ARP header, an attacker can cause the device protocol stack to crash or even cause the device to go down

Trust: 0.72

sources: CNVD: CNVD-2016-07704 // IVD: abcdceab-c113-42e2-aa0d-76785eb7671b

IOT TAXONOMY

category:['ICS', 'Network device']sub_category: -

Trust: 0.6

category:['ICS']sub_category: -

Trust: 0.2

sources: IVD: abcdceab-c113-42e2-aa0d-76785eb7671b // CNVD: CNVD-2016-07704

AFFECTED PRODUCTS

vendor:rockwellmodel:automation ab plcscope:eqversion:1769

Trust: 0.6

vendor:rockwellmodel:automation ab plcscope:eqversion:1769*

Trust: 0.2

sources: IVD: abcdceab-c113-42e2-aa0d-76785eb7671b // CNVD: CNVD-2016-07704

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2016-07704
value: HIGH

Trust: 0.6

IVD: abcdceab-c113-42e2-aa0d-76785eb7671b
value: HIGH

Trust: 0.2

CNVD: CNVD-2016-07704
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: abcdceab-c113-42e2-aa0d-76785eb7671b
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

sources: IVD: abcdceab-c113-42e2-aa0d-76785eb7671b // CNVD: CNVD-2016-07704

TYPE

Denial of service

Trust: 0.2

sources: IVD: abcdceab-c113-42e2-aa0d-76785eb7671b

EXTERNAL IDS

db:CNVDid:CNVD-2016-07704

Trust: 0.8

db:IVDid:ABCDCEAB-C113-42E2-AA0D-76785EB7671B

Trust: 0.2

sources: IVD: abcdceab-c113-42e2-aa0d-76785eb7671b // CNVD: CNVD-2016-07704

SOURCES

db:IVDid:abcdceab-c113-42e2-aa0d-76785eb7671b
db:CNVDid:CNVD-2016-07704

LAST UPDATE DATE

2022-05-17T02:05:51.807000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2016-07704date:2016-12-23T00:00:00

SOURCES RELEASE DATE

db:IVDid:abcdceab-c113-42e2-aa0d-76785eb7671bdate:2016-09-19T00:00:00
db:CNVDid:CNVD-2016-07704date:2016-10-26T00:00:00