Rockwell Automation RSLinx Classic Vulnerability (CVE-2014-9204)
Rockwell Automation RSLinx Classic Vulnerability (CVE-2014-9204)
Release date:
Updated on:
Affected Systems:
Rockwell Automation RSLinx Classic <3.73.00
Description:
CVE (CAN) ID: CVE-2014-9204
RSLinx Classic is used to enable communications between Rockwell Software applications in industrial control systems.
The stack buffer overflow vulnerability exists in the implementation of RSLinx Classic 3.73.00. successful exploitation of this vulnerability can cause application crash or malicious code injection.
<* Source: Ivan Sanchez
Link: https://ics-cert.us-cert.gov/advisories/ICSA-15-111-02
*>
Suggestion:
Vendor patch:
Rockwell Automation
-------------------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Https://rockwellautomation.custhelp.com/app/answers/detail/a_id/646324
This article permanently updates the link address: