Details of VAR-E-201001-1423

ID

VAR-E-201001-1423

CVE

cve_id:

CVE-2009-3739

Trust: 0.3

sources: BID: 37827

TITLE

MicroLogix 1100 and 1400 Controllers Multiple Vulnerabilities

Trust: 0.3

sources: BID: 37827

DESCRIPTION

MicroLogix 1100 and 1400 Controllers are prone to multiple vulnerabilities.
Attackers may exploit these issues to gain unauthorized access to the programmable logic controller (PLC). Successful exploits will allow attackers to compromise affected devices. Other attacks are also possible.

Trust: 0.3

sources: BID: 37827

AFFECTED PRODUCTS

vendor:	rockwell	model:	automation micrologix	scope:	eq	version:	14000	Trust: 0.3
vendor:	rockwell	model:	automation micrologix	scope:	eq	version:	11000	Trust: 0.3

sources: BID: 37827

EXPLOIT

An attacker can carry out these attacks with widely available tools and utilities.

Trust: 0.3

sources: BID: 37827

PRICE

Free

Trust: 0.3

sources: BID: 37827

TYPE

Design Error

Trust: 0.3

sources: BID: 37827

CREDITS

Eyal Udassin

Trust: 0.3

sources: BID: 37827

EXTERNAL IDS

db:	CERT/CC	id:	VU#144233	Trust: 0.3
db:	NVD	id:	CVE-2009-3739	Trust: 0.3
db:	BID	id:	37827	Trust: 0.3

sources: BID: 37827

REFERENCES

url:	http://www.kb.cert.org/vuls/id/144233	Trust: 0.3
url:	http://www.ab.com/programmablecontrol/plc/micrologix1100/	Trust: 0.3

sources: BID: 37827

SOURCES

db:

BID

id:

37827

LAST UPDATE DATE

2022-07-27T09:50:24.625000+00:00

SOURCES UPDATE DATE

db:

BID

id:

37827

date:

2010-01-20T15:11:00

SOURCES RELEASE DATE

db:

BID

id:

37827

date:

2010-01-15T00:00:00