Rockwell Automation 1756 EN2 and 1756 EN3 Denial of Service Vulnerabilities

Rockwell Automation 1756 is a scalable controller solution from Rockwell Automation. It is capable of addressing a large number of I/O points. A denial of service vulnerability exists in Rockwell Automation 1756 EN2 and 1756 EN3, which arises from a failure to properly handle incoming error messages and can be exploited by an attacker to persistently execute remote code on the target system via a maliciously crafted CIP message.