CVE-2020-5802
N/A
N/A
Summary
An attacker-controlled memory allocation size can be passed to the C++ new operator in RnaDaSvr.dll by sending a specially crafted ConfigureItems message to TCP port 4241. This will cause an unhandled exception, resulting in termination of RSLinxNG.exe. Observed in FactoryTalk 6.11. All versions of FactoryTalk Linx are affected.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Rockwell FactoryTalk Linx | All versions of FactoryTalk Linx | affected |
Weaknesses
- Unauthenticated Remote Denial of Service
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.