CVE-2016-5814

Buffer overflow in Rockwell Automation RSLogix Micro Starter Lite, RSLogix Micro Developer, RSLogix 500 Starter Edition, RSLogix 500 Standard Edition, and RSLogix 500 Professional Edition allows remote attackers to execute arbitrary code via a crafted RSS project file.
References
Link Resource
http://www.securityfocus.com/bid/92983
https://ics-cert.us-cert.gov/advisories/ICSA-16-224-02 Mitigation Patch Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:rockwellautomation:rslogix_500_professional_edition:-:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:rslogix_500_standard_edition:-:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:rslogix_500_starter_edition:-:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:rslogix_micro_developer:-:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:rslogix_micro_starter_lite:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2016-09-19 01:59

Updated : 2023-12-10 11:46


NVD link : CVE-2016-5814

Mitre link : CVE-2016-5814

CVE.ORG link : CVE-2016-5814


JSON object : View

Products Affected

rockwellautomation

  • rslogix_500_standard_edition
  • rslogix_micro_developer
  • rslogix_500_starter_edition
  • rslogix_500_professional_edition
  • rslogix_micro_starter_lite
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer