Rewterz Threat Advisory – CVE-2018-0472 – Rockwell Automation Stratix 5950
April 5, 2019Rewterz Threat Advisory – PHP Multiple Denial of Service Vulnerabilities
April 5, 2019Rewterz Threat Advisory – CVE-2018-0472 – Rockwell Automation Stratix 5950
April 5, 2019Rewterz Threat Advisory – PHP Multiple Denial of Service Vulnerabilities
April 5, 2019Severity
High
Analysis Summary
CVE-2018-0466
Sending a specially crafted open shortest path first version 3 (OSPFv3) packet could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial-of-service condition.
Impact
- Denial-of-service
- Buffer overflow or memory exhaustion.
Affected Vendors
Rockwell Automation
Affected Products
- Stratix 5400/5410/5700/8000/8300
- ArmorStratix 5700
Remediation
Vendor recommends users upgrade to the following versions or later:
FRN 15.2(6)E2a:
- Allen-Bradley Stratix 5400
- Allen-Bradley Stratix 5410
- Allen-Bradley Stratix 5700
- Allen-Bradley ArmorStratix 5700
- Allen-Bradley Stratix 8000
FRN 15.2(4)EA7:
- Allen-Bradley Stratix 8300