CVE-2012-0221
Published Apr 2, 2012
Last updated 13 years ago
Overview
- Description
- The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 does not properly handle the return value from an unspecified function, which allows remote attackers to cause a denial of service (service outage) via a crafted packet.
- Source
- cret@cert.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-20
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:rockwellautomation:factorytalk:cpr9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4CDEE93-7510-44B2-9C6F-57D896F2BDCD"
},
{
"criteria": "cpe:2.3:a:rockwellautomation:factorytalk:cpr9_sr5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D3288C19-0AA1-45AC-A224-0483587645E0"
},
{
"criteria": "cpe:2.3:a:rockwellautomation:rslogix_5000:17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3E1F2B5-8BD1-49DF-AEF1-8E4B47C8F5E4"
},
{
"criteria": "cpe:2.3:a:rockwellautomation:rslogix_5000:18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4165EAF-CA42-4A8D-BE59-275DFB21EA80"
},
{
"criteria": "cpe:2.3:a:rockwellautomation:rslogix_5000:19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D1D65EF8-F725-4250-9319-08B6625928ED"
},
{
"criteria": "cpe:2.3:a:rockwellautomation:rslogix_5000:20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E984E344-7B3A-4A0A-96A9-D2C2E4802ECA"
}
],
"operator": "OR"
}
]
}
]