CVE Vulnerabilities

CVE-2012-6437

Improper Authentication

Published: Jan 24, 2013 | Modified: Jan 25, 2013
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and earlier; SoftLogix 18 and earlier; CompactLogix controllers 19 and earlier; SoftLogix controllers 19 and earlier; ControlLogix controllers 20 and earlier; GuardLogix controllers 20 and earlier; and MicroLogix 1100 and 1400 do not properly perform authentication for Ethernet firmware updates, which allows remote attackers to execute arbitrary code via a Trojan horse update image.

Weakness

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Software

Name Vendor Start Version End Version
Controllogix_controllers Rockwellautomation * 20 (including)
Guardlogix_controllers Rockwellautomation * 20 (including)
Micrologix Rockwellautomation * 1100 (including)
Micrologix Rockwellautomation * 1400 (including)
Softlogix_controllers Rockwellautomation * 19 (including)
1756-enbt Rockwellautomation - (including) - (including)
1756-eweb Rockwellautomation - (including) - (including)
1768-enbt Rockwellautomation - (including) - (including)
1768-eweb Rockwellautomation - (including) - (including)
1794-aentr_flex_i/o_ethernet/ip_adapter Rockwellautomation - (including) - (including)
Compactlogix Rockwellautomation * 18 (including)
Compactlogix_controllers Rockwellautomation * 19 (including)
Compactlogix_l32e_controller Rockwellautomation - (including) - (including)
Compactlogix_l35e_controller Rockwellautomation - (including) - (including)
Controllogix Rockwellautomation * 18 (including)
Flexlogix_1788-enbt_adapter Rockwellautomation - (including) - (including)
Guardlogix Rockwellautomation * 18 (including)
Softlogix Rockwellautomation * 18 (including)

Potential Mitigations

References