Sign-up

ID

VAR-201301-0155


CVE

CVE-2012-6438


TITLE

plural Rockwell Automation Product buffer overflow vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2013-001266

DESCRIPTION

Buffer overflow in Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and earlier; SoftLogix 18 and earlier; CompactLogix controllers 19 and earlier; SoftLogix controllers 19 and earlier; ControlLogix controllers 20 and earlier; GuardLogix controllers 20 and earlier; and MicroLogix 1100 and 1400 allows remote attackers to cause a denial of service (NIC crash and communication outage) via a malformed CIP packet. plural Rockwell Automation The product contains a buffer overflow vulnerability.Malformed by a third party CIP Service disruption via packets (NIC Crashes and communication outages ) There is a possibility of being put into a state. Rockwell Automation MicroLogix is a programmable controller platform. The device does not verify the data to be copied to the buffer, allowing the remote attacker to send a specially crafted CIP message to the 2222/TCP, 2222/UDP, 44818/TCP or 44818/UDP port, triggering a buffer overflow and causing the NIC to crash. Rockwell's products are affected by this vulnerability: all EtherNet/IP products that comply with CIP and EtherNet/IP specifications. An attacker can exploit this issue to cause the NIC to crash, denying service to legitimate users

Trust: 2.7

sources: NVD: CVE-2012-6438 // JVNDB: JVNDB-2013-001266 // CNVD: CNVD-2013-00290 // BID: 57310 // IVD: 203ab488-2353-11e6-abef-000c29c66e3d // VULHUB: VHN-59719

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: 203ab488-2353-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-00290

AFFECTED PRODUCTS

vendor:rockwellautomationmodel:1756-ewebscope:eqversion: -

Trust: 1.0

vendor:rockwellautomationmodel:controllogixscope:lteversion:18

Trust: 1.0

vendor:rockwellautomationmodel:compactlogix l35e controllerscope:eqversion: -

Trust: 1.0

vendor:rockwellautomationmodel:1768-ewebscope:eqversion: -

Trust: 1.0

vendor:rockwellautomationmodel:compactlogix controllersscope:lteversion:19

Trust: 1.0

vendor:rockwellautomationmodel:guardlogix controllersscope:lteversion:20

Trust: 1.0

vendor:rockwellautomationmodel:controllogix controllersscope:lteversion:20

Trust: 1.0

vendor:rockwellautomationmodel:compactlogixscope:lteversion:18

Trust: 1.0

vendor:rockwellautomationmodel:guardlogixscope:lteversion:18

Trust: 1.0

vendor:rockwellautomationmodel:micrologixscope:lteversion:1400

Trust: 1.0

vendor:rockwellautomationmodel:softlogixscope:lteversion:18

Trust: 1.0

vendor:rockwellautomationmodel:softlogix controllersscope:lteversion:19

Trust: 1.0

vendor:rockwellautomationmodel:1756-enbtscope:eqversion: -

Trust: 1.0

vendor:rockwellautomationmodel:flexlogix 1788-enbt adapterscope:eqversion: -

Trust: 1.0

vendor:rockwellautomationmodel:1768-enbtscope:eqversion: -

Trust: 1.0

vendor:rockwellautomationmodel:1794-aentr flex i\/o ethernet\/ip adapterscope:eqversion: -

Trust: 1.0

vendor:rockwellautomationmodel:micrologixscope:lteversion:1100

Trust: 1.0

vendor:rockwellautomationmodel:compactlogix l32e controllerscope:eqversion: -

Trust: 1.0

vendor:rockwell automationmodel:1756-enbtscope: - version: -

Trust: 0.8

vendor:rockwell automationmodel:1756-ewebscope: - version: -

Trust: 0.8

vendor:rockwell automationmodel:1768-enbtscope: - version: -

Trust: 0.8

vendor:rockwell automationmodel:1768-ewebscope: - version: -

Trust: 0.8

vendor:rockwell automationmodel:compactlogix l32e controllerscope: - version: -

Trust: 0.8

vendor:rockwell automationmodel:compactlogix l35e controllerscope: - version: -

Trust: 0.8

vendor:rockwell automationmodel:compactlogix controllerscope:lteversion:18

Trust: 0.8

vendor:rockwell automationmodel:compactlogix controllerscope:lteversion:19

Trust: 0.8

vendor:rockwell automationmodel:controllogix controllerscope:lteversion:18

Trust: 0.8

vendor:rockwell automationmodel:controllogix controllerscope:lteversion:20

Trust: 0.8

vendor:rockwell automationmodel:flex i/o ethernet/ip adapter 1794-aentrscope: - version: -

Trust: 0.8

vendor:rockwell automationmodel:flexlogix 1788-enbtscope: - version: -

Trust: 0.8

vendor:rockwell automationmodel:guardlogix controllerscope:lteversion:18

Trust: 0.8

vendor:rockwell automationmodel:guardlogix controllerscope:lteversion:20

Trust: 0.8

vendor:rockwell automationmodel:micrologixscope:eqversion:1100

Trust: 0.8

vendor:rockwell automationmodel:micrologixscope:eqversion:1400

Trust: 0.8

vendor:rockwell automationmodel:softlogix controllerscope:lteversion:18

Trust: 0.8

vendor:rockwell automationmodel:softlogix controllerscope:lteversion:19

Trust: 0.8

vendor:rockwellmodel:automation controllogixscope: - version: -

Trust: 0.6

vendor:rockwellmodel:automation micrologixscope:eqversion:1100

Trust: 0.6

vendor:rockwellmodel:automation micrologixscope:eqversion:1400

Trust: 0.6

vendor:rockwellautomationmodel:guardlogix controllersscope:eqversion:20

Trust: 0.6

vendor:rockwellautomationmodel:compactlogixscope:eqversion:18

Trust: 0.6

vendor:rockwellautomationmodel:controllogixscope:eqversion:18

Trust: 0.6

vendor:rockwellautomationmodel:micrologixscope:eqversion:1100

Trust: 0.6

vendor:rockwellautomationmodel:softlogixscope:eqversion:18

Trust: 0.6

vendor:rockwellautomationmodel:guardlogixscope:eqversion:18

Trust: 0.6

vendor:rockwellautomationmodel:compactlogix controllersscope:eqversion:19

Trust: 0.6

vendor:rockwellautomationmodel:micrologixscope:eqversion:1400

Trust: 0.6

vendor:rockwellautomationmodel:softlogix controllersscope:eqversion:19

Trust: 0.6

vendor:rockwellautomationmodel:controllogix controllersscope:eqversion:20

Trust: 0.6

vendor:micrologixmodel: - scope:eqversion:*

Trust: 0.4

vendor:rockwellmodel:automation softlogixscope:eqversion:19

Trust: 0.3

vendor:rockwellmodel:automation softlogixscope:eqversion:18

Trust: 0.3

vendor:rockwellmodel:automation micrologixscope:eqversion:14000

Trust: 0.3

vendor:rockwellmodel:automation micrologixscope:eqversion:11000

Trust: 0.3

vendor:rockwellmodel:automation guardlogixscope:eqversion:20

Trust: 0.3

vendor:rockwellmodel:automation guardlogixscope:eqversion:18

Trust: 0.3

vendor:rockwellmodel:automation compactlogix l35escope: - version: -

Trust: 0.3

vendor:rockwellmodel:automation compactlogix l32escope: - version: -

Trust: 0.3

vendor:rockwellmodel:automation compactlogixscope:eqversion:19

Trust: 0.3

vendor:rockwellmodel:automation compactlogixscope:eqversion:18

Trust: 0.3

vendor:rockwellmodel:automation 1794-aentrscope:eqversion:0

Trust: 0.3

vendor:rockwellmodel:automation 1788-enbtscope:eqversion:0

Trust: 0.3

vendor:rockwellmodel:automation 1768-ewebscope:eqversion:0

Trust: 0.3

vendor:rockwellmodel:automation 1768-enbtscope:eqversion:0

Trust: 0.3

vendor:rockwellmodel:automation 1756-enbtscope:eqversion:0

Trust: 0.3

vendor:rockwellmodel:automation 1756-en2t series bscope:eqversion:0

Trust: 0.3

vendor:controllogix controllersmodel: - scope:eqversion:*

Trust: 0.2

vendor:guardlogix controllersmodel: - scope:eqversion:*

Trust: 0.2

vendor:softlogix controllersmodel: - scope:eqversion:*

Trust: 0.2

vendor:1756 enbtmodel: - scope:eqversion: -

Trust: 0.2

vendor:1756 ewebmodel: - scope:eqversion: -

Trust: 0.2

vendor:1768 enbtmodel: - scope:eqversion: -

Trust: 0.2

vendor:1768 ewebmodel: - scope:eqversion: -

Trust: 0.2

vendor:1794 aentr flex i o ethernet ip adaptermodel: - scope:eqversion: -

Trust: 0.2

vendor:compactlogixmodel: - scope:eqversion:*

Trust: 0.2

vendor:compactlogix controllersmodel: - scope:eqversion:*

Trust: 0.2

vendor:compactlogix l32e controllermodel: - scope:eqversion: -

Trust: 0.2

vendor:compactlogix l35e controllermodel: - scope:eqversion: -

Trust: 0.2

vendor:controllogixmodel: - scope:eqversion:*

Trust: 0.2

vendor:flexlogix 1788 enbt adaptermodel: - scope:eqversion: -

Trust: 0.2

vendor:guardlogixmodel: - scope:eqversion:*

Trust: 0.2

vendor:softlogixmodel: - scope:eqversion:*

Trust: 0.2

sources: IVD: 203ab488-2353-11e6-abef-000c29c66e3d // CNVD: CNVD-2013-00290 // BID: 57310 // JVNDB: JVNDB-2013-001266 // CNNVD: CNNVD-201301-258 // NVD: CVE-2012-6438

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2012-6438
value: HIGH

Trust: 1.0

NVD: CVE-2012-6438
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201301-258
value: HIGH

Trust: 0.6

IVD: 203ab488-2353-11e6-abef-000c29c66e3d
value: HIGH

Trust: 0.2

VULHUB: VHN-59719
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2012-6438
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

IVD: 203ab488-2353-11e6-abef-000c29c66e3d
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-59719
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: IVD: 203ab488-2353-11e6-abef-000c29c66e3d // VULHUB: VHN-59719 // JVNDB: JVNDB-2013-001266 // CNNVD: CNNVD-201301-258 // NVD: CVE-2012-6438

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.9

sources: VULHUB: VHN-59719 // JVNDB: JVNDB-2013-001266 // NVD: CVE-2012-6438

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201301-258

TYPE

Buffer overflow

Trust: 0.8

sources: IVD: 203ab488-2353-11e6-abef-000c29c66e3d // CNNVD: CNNVD-201301-258

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2013-001266

PATCH
title:Top Pageurl:http://www.rockwellautomation.com/
Trust: 0.8
title:Partnerurl:http://jp.rockwellautomation.com/applications/gs/ap/gsjp.nsf/pages/partner
Trust: 0.8
title:Top Pageurl:http://jp.rockwellautomation.com/
Trust: 0.8
title:Patch for Rockwell Automation ControlLogix Remote Denial of Service Vulnerability (CNVD-2013-00290)url:https://www.cnvd.org.cn/patchInfo/show/29231
Trust: 0.6
title:1768-ENBT_4.004.006url:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=45390
Trust: 0.6
title:1756-EWEB_4.016url:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=45389
Trust: 0.6
title:1756-ENBT_6.006url:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=45388
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2013-00290 // 
            
            
            
            JVNDB: JVNDB-2013-001266 // 
            
            
            
            CNNVD: CNNVD-201301-258

EXTERNAL IDS
db:NVDid:CVE-2012-6438
Trust: 3.6
db:ICS CERTid:ICSA-13-011-03
Trust: 3.4
db:BIDid:57310
Trust: 1.0
db:CNNVDid:CNNVD-201301-258
Trust: 0.9
db:CNVDid:CNVD-2013-00290
Trust: 0.8
db:JVNDBid:JVNDB-2013-001266
Trust: 0.8
db:IVDid:203AB488-2353-11E6-ABEF-000C29C66E3D
Trust: 0.2
db:VULHUBid:VHN-59719
Trust: 0.1
sources:
            
            
            IVD: 203ab488-2353-11e6-abef-000c29c66e3d // 
            
            
            
            CNVD: CNVD-2013-00290 // 
            
            
            
            VULHUB: VHN-59719 // 
            
            
            
            BID: 57310 // 
            
            
            
            JVNDB: JVNDB-2013-001266 // 
            
            
            
            CNNVD: CNNVD-201301-258 // 
            
            
            
            NVD: CVE-2012-6438

REFERENCES
url:http://www.us-cert.gov/control_systems/pdf/icsa-13-011-03.pdf
Trust: 3.4
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-6438
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-6438
Trust: 0.8
url:http://www.securityfocus.com/bid/57310
Trust: 0.6
url:http://www.rockwellautomation.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2013-00290 // 
            
            
            
            VULHUB: VHN-59719 // 
            
            
            
            BID: 57310 // 
            
            
            
            JVNDB: JVNDB-2013-001266 // 
            
            
            
            CNNVD: CNNVD-201301-258 // 
            
            
            
            NVD: CVE-2012-6438

CREDITS
Rub??n Santamarta
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201301-258

SOURCES
db:IVDid:203ab488-2353-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2013-00290
db:VULHUBid:VHN-59719
db:BIDid:57310
db:JVNDBid:JVNDB-2013-001266
db:CNNVDid:CNNVD-201301-258
db:NVDid:CVE-2012-6438

LAST UPDATE DATE
2024-08-14T14:14:28.357000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2013-00290date:2013-01-17T00:00:00
db:VULHUBid:VHN-59719date:2013-01-25T00:00:00
db:BIDid:57310date:2013-01-11T00:00:00
db:JVNDBid:JVNDB-2013-001266date:2013-01-28T00:00:00
db:CNNVDid:CNNVD-201301-258date:2013-01-16T00:00:00
db:NVDid:CVE-2012-6438date:2013-01-25T16:26:34.367

SOURCES RELEASE DATE
db:IVDid:203ab488-2353-11e6-abef-000c29c66e3ddate:2013-01-17T00:00:00
db:CNVDid:CNVD-2013-00290date:2013-01-17T00:00:00
db:VULHUBid:VHN-59719date:2013-01-24T00:00:00
db:BIDid:57310date:2013-01-11T00:00:00
db:JVNDBid:JVNDB-2013-001266date:2013-01-28T00:00:00
db:CNNVDid:CNNVD-201301-258date:2013-01-16T00:00:00
db:NVDid:CVE-2012-6438date:2013-01-24T21:55:01.603