CVE-2020-5806
N/A
N/A
Summary
An attacker-controlled memory allocation size can be passed to the C++ new operator in the CServerManager::HandleBrowseLoadIconStreamRequest in messaging.dll. This can be done by sending a specially crafted message to 127.0.0.1:7153. Observed in FactoryTalk Linx 6.11. All versions of FactoryTalk Linx are affected.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Rockwell FactoryTalk Linx | All versions of FactoryTalk Linx | affected |
Weaknesses
- Local Denial of Service
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.