module
DoS Exploitation of Allen-Bradley's Legacy Protocol (PCCC)
| Disclosed | Created |
|---|---|
| N/A | Mar 19, 2019 |
Disclosed
N/A
Created
Mar 19, 2019
Description
A remote, unauthenticated attacker could send a single, specially crafted
Programmable Controller Communication Commands (PCCC) packet to the controller
that could potentially cause the controller to enter a DoS condition.
MicroLogix 1100 controllers are affected: 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and
1763-L16DWD.
CVE-2017-7924 has been assigned to this vulnerability.
A CVSS v3 base score of 7.5 has been assigned.
Programmable Controller Communication Commands (PCCC) packet to the controller
that could potentially cause the controller to enter a DoS condition.
MicroLogix 1100 controllers are affected: 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and
1763-L16DWD.
CVE-2017-7924 has been assigned to this vulnerability.
A CVSS v3 base score of 7.5 has been assigned.
Authors
José Diogo Monteiro jdlopes@student.dei.uc.pt
Luis Rosa lmrosa@dei.uc.pt
Miguel Borges de Freitas miguelbf@dei.uc.pt
Luis Rosa lmrosa@dei.uc.pt
Miguel Borges de Freitas miguelbf@dei.uc.pt
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.