Lucene search
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500453.NASLHistoryAug 10, 2021 - 12:00 a.m.
Rockwellautomation Flex Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
2021-08-1000:00:00
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
rockwellautomation
flex buffer copy
checking size
classic buffer overflow
file data
scanner
EPSS
0.001
Percentile
29.8%
An exploitable denial of service vulnerability exists in the ENIP Request Path Logical Segment functionality of Allen-Bradley Flex IO 1794-AENT/B 4.003. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can send a malicious packet to trigger this vulnerability by sending an Electronic Key Segment with less than 0x18 bytes following the Key Format field.
File data ot_500453.naslRelated
cvelist
cvelist
CVE-2020-6085
2020-10-19 20:46:09
nessus
nessus
prion
prion
Denial of service
2020-10-19 21:15:00
cve
cve
CVE-2020-6085
2020-10-19 21:15:13
nvd
nvd
CVE-2020-6085
2020-10-19 21:15:13
talos
talos
ics
ics
Rockwell Automation 1794-AENT Flex I/O Series B
2020-10-27 12:00:00