module
DoS Exploitation of Allen-Bradley's Legacy Protocol (PCCC)
| Disclosed | Created |
|---|---|
| N/A | Mar 19, 2019 |
Disclosed
N/A
Created
Mar 19, 2019
Description
A remote, unauthenticated attacker could send a single, specially crafted
Programmable Controller Communication Commands (PCCC) packet to the controller
that could potentially cause the controller to enter a DoS condition.
MicroLogix 1100 controllers are affected: 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and
1763-L16DWD.
CVE-2017-7924 has been assigned to this vulnerability.
A CVSS v3 base score of 7.5 has been assigned.
Programmable Controller Communication Commands (PCCC) packet to the controller
that could potentially cause the controller to enter a DoS condition.
MicroLogix 1100 controllers are affected: 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and
1763-L16DWD.
CVE-2017-7924 has been assigned to this vulnerability.
A CVSS v3 base score of 7.5 has been assigned.
Authors
José Diogo Monteiro [email protected]
Luis Rosa [email protected]
Miguel Borges de Freitas [email protected]
Luis Rosa [email protected]
Miguel Borges de Freitas [email protected]
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.