Vulnerabilities > CVE-2012-4713 - Numeric Errors vulnerability in Rockwellautomation Factorytalk Services Platform Cpr9

047910
CVSS 7.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
low complexity
rockwellautomation
CWE-189

Summary

Integer signedness error in RNADiagnostics.dll in Rockwell Automation FactoryTalk Services Platform (FTSP) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service (service outage or RNADiagReceiver.exe daemon crash) via UDP data that specifies a negative integer value.

Vulnerable Configurations

Part Description Count
Application
Rockwellautomation
8

Common Weakness Enumeration (CWE)