CVE-2012-4715

Buffer overflow in LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a UDP packet with a certain integer length value that is (1) too large or (2) too small, leading to improper handling by Logger.dll.
Configurations

Configuration 1 (hide)

OR cpe:2.3:h:rockwellautomation:rslinx_enterprise:cpr9:*:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:rslinx_enterprise:cpr9:sr1:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:rslinx_enterprise:cpr9:sr2:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:rslinx_enterprise:cpr9:sr3:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:rslinx_enterprise:cpr9:sr4:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:rslinx_enterprise:cpr9:sr5:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:rslinx_enterprise:cpr9:sr5.1:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:rslinx_enterprise:cpr9:sr6:*:*:*:*:*:*

History

21 Nov 2024, 01:43

Type Values Removed Values Added
References () http://ics-cert.us-cert.gov/pdf/ICSA-13-095-02.pdf - US Government Resource () http://ics-cert.us-cert.gov/pdf/ICSA-13-095-02.pdf - US Government Resource
References () https://rockwellautomation.custhelp.com/app/answers/detail/a_id/537599 - () https://rockwellautomation.custhelp.com/app/answers/detail/a_id/537599 -

Information

Published : 2013-04-18 11:33

Updated : 2024-11-21 01:43


NVD link : CVE-2012-4715

Mitre link : CVE-2012-4715

CVE.ORG link : CVE-2012-4715


JSON object : View

Products Affected

rockwellautomation

  • rslinx_enterprise
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer