Description
A vulnerability was found in Rockwell Automation RSLinx Classic versions 4.10.00 and prior. An input validation issue in a .dll file of RSLinx Classic where the data in a Forward Open service request is passed to a fixed size buffer, allowing an attacker to exploit a stack-based buffer overflow condition.
Affected products
- Rockwell Automation / RSLinx Classic4.10.00 and prior – 4.10.00 and prior
References
- VENDOR_ADVISORYhttps://ics-cert.us-cert.gov/advisories/ICSA-19-064-01