CVE-2012-4714

2013-04-18 04:25:36 2013-04-18 06:00:00

Integer overflow in RNADiagnostics.dll in Rockwell Automation FactoryTalk Services Platform (FTSP) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service (service outage or RNADiagReceiver.exe daemon crash) via UDP data that specifies a large integer value.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

COMPLETE

Linux Kernel 2.6.23 release candidate 2 Linux Kernel 2.6.23 Release Candidate 3 Linux Kernel 2.6.23 Release Candidate 5 Linux Kernel 2.6.23 Release Candidate 4 Linux Kernel 2.6.23 Release Candidate 6 Linux Kernel 2.6.22.9 Linux Kernel 2.6.23 Release Candidate 1 Linux Kernel 2.6.23

Rockwellautomation - Factorytalk services platform

Advisory	Patch	Confirmed	Link
			http://ics-cert.us-cert.gov/pdf/ICSA-13-095-02.pdf
			https://rockwellautomation.custhelp.com/app/answers/deta...

CVE-2012-4714

2013-04-18 04:25:36 2013-04-18 06:00:00

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)