SB2017052412 - Multiple vulnerabilities in Rockwell Automation Allen-Bradley MicroLogix 1100 and 1400

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2017052412

SB2017052412 - Multiple vulnerabilities in Rockwell Automation Allen-Bradley MicroLogix 1100 and 1400

Published: May 24, 2017

Security Bulletin ID SB2017052412
Severity
High
Patch available
YES
Number of vulnerabilities 5
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 40% Low 60%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.


1) Authentication bypass (CVE-ID: CVE-2017-7898)

The vulnerability allows a remote attacker to perform brute-force attack.

The vulnerability exists due to improper restriction of excessive authentication attempts. A remote attacker can repeatedly enter incorrect passwords to gain unauthorized access to the system.

Successful exploitation of the vulnerability may result in unauthorized access to vulnerable system.


2) Information disclosure (CVE-ID: CVE-2017-7899)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The vulnerability exists due to an error when sending credentials to the web server using the HTTP GET method, which may result in the credentials being logged.

Successful exploitation of the vulnerability may result in unauthorized retrieval of the user credentials.


3) Denial of service (CVE-ID: CVE-2017-7901)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The vulnerability exists due to generation of insufficiently random TCP initial sequence numbers. A remote attacker can predict the numbers from previous values and spoof or disrupt TCP connections.

Successful exploitation of the vulnerability may result in denial of service.


4) Denial of service (CVE-ID: CVE-2017-7902)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The vulnerability exists due to reuse of nonces by the affected software. A remote attacker can capture and replay a valid request until the nonce is changed.

Successful exploitation of the vulnerability may result in denial of service.


5) Authentication bypass (CVE-ID: CVE-2017-7903)

The vulnerability allows a remote attacker to perform brute-force attack.

The vulnerability exists due to weak password requirements. A remote attacker can brute-force account passwords and bypass authentication on the system.

Successful exploitation of the vulnerability may result in unauthorized access to vulnerable system.


Remediation

Install update from vendor's website.

References