CVE-2017-7924
Allen-Bradley's Legacy Protocol (PCCC) Denial Of Service
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An Improper Input Validation issue was discovered in Rockwell Automation MicroLogix 1100 controllers 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and 1763-L16DWD. A remote, unauthenticated attacker could send a single, specially crafted Programmable Controller Communication Commands (PCCC) packet to the controller that could potentially cause the controller to enter a DoS condition.
Se ha descubierto un problema de validación de entrada incorrecta en los controladores Rockwell Automation MicroLogix 1100 1763-L16BWA, 1763-L16AWA, 1763-L16BBB y 1763-L16DWD. Un atacante remoto sin autenticar podría enviar un único paquete de tipo Programmable Controller Communication Commands (PCCC) manipulado al controlador que podría provocar que el controlador entre en una denegación de servicio.
A remote, unauthenticated attacker could send a single, specially crafted Programmable Controller Communication Commands (PCCC) packet to the controller that could potentially cause the controller to enter a DoS condition. MicroLogix 1100 controllers are affected: 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and 1763-L16DWD.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-04-18 CVE Reserved
- 2017-09-20 CVE Published
- 2023-07-31 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/99622 | Third Party Advisory | |
| https://ics-cert.us-cert.gov/advisories/ICSA-17-138-03 | Mitigation |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Rockwellautomation Search vendor "Rockwellautomation" | 1763-l16bwa Firmware Search vendor "Rockwellautomation" for product "1763-l16bwa Firmware" | - | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | 1763-l16bwa Search vendor "Rockwellautomation" for product "1763-l16bwa" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | 1763-l16awa Firmware Search vendor "Rockwellautomation" for product "1763-l16awa Firmware" | - | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | 1763-l16awa Search vendor "Rockwellautomation" for product "1763-l16awa" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | 1763-l16bbb Firmware Search vendor "Rockwellautomation" for product "1763-l16bbb Firmware" | - | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | 1763-l16bbb Search vendor "Rockwellautomation" for product "1763-l16bbb" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | 1763-l16dwd Firmware Search vendor "Rockwellautomation" for product "1763-l16dwd Firmware" | - | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | 1763-l16dwd Search vendor "Rockwellautomation" for product "1763-l16dwd" | - | - |
Safe
|