CVE-2020-5801

Summary

An attacker can craft and send an OpenNamespace message to port 4241 with valid session-id that triggers an unhandled exception in CFTLDManager::HandleRequest function in RnaDaSvr.dll, resulting in process termination. Observed in FactoryTalk Linx 6.11. All versions of FactoryTalk Linx are affected.

Affected Software

VendorProductVersion RangeStatus
n/aRockwell FactoryTalk LinxAll versions of FactoryTalk Linxaffected

Weaknesses

  • Unauthenticated Remote DoS

ADP Enrichment

CVE Program Container

Additional References

References