Multiple Rockwell Automation Products CVE-2017-3881 Remote Code Execution Vulnerability

Multiple Rockwell Automation products are prone to a remote code-execution vulnerability.

Successful exploits will result in the execution of arbitrary code with elevated privileges. Failed exploit attempts may result in a denial-of-service condition.

The following products are vulnerable:

Allen-Bradley Stratix 5400 Industrial Ethernet Switches versions 15.2(5)EA.fc4 and prior.
Allen-Bradley Stratix 5410 Industrial Distribution Switches versions 15.2(5)EA.fc4 and prior.
Allen-Bradley Stratix 5700 Industrial Managed Ethernet Switches versions 15.2(5)EA.fc4 and prior.
Allen-Bradley ArmorStratix 5700 Industrial Managed Ethernet Switches versions 15.2(5)EA.fc4 and prior.
Allen-Bradley Stratix 8300 Modular Managed Industrial Ethernet Switches versions 15.2(4a)EA5 and prior.

Information

Bugtraq ID: 97391
Class: Input Validation Error
CVE: CVE-2017-3881

Remote: Yes
Local: No
Published: Apr 04 2017 12:00AM
Credit: The vendor reported this issue.
Vulnerable: Rockwell Automation Allen-Bradley Stratix 8000 Modular Managed Industrial Ethernet S 15.2(5)EA.fc4
Rockwell Automation Allen-Bradley Stratix 5700 Industrial Managed Ethernet Switches 15.2(5)EA.fc4
Rockwell Automation Allen-Bradley Stratix 5410 Industrial Distribution Switches 15.2(5)EA.fc4
Rockwell Automation Allen-Bradley Stratix 5400 Industrial Ethernet Switches 15.2(5)EA.fc4
Rockwell Automation Allen-Bradley ArmorStratix 5700 Industrial Managed Ethernet Swit 15.2(5)EA.fc4

Not Vulnerable:

References:

• Rockwell Automation Homepage (Rockwell Automation)
  
• (ICSA-17-094-03) Rockwell Automation Allen-Bradley Stratix and Allen-Bradley Arm (cert.us)
  

Source: www.securityfocus.com