1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Bug in Rockwell’s PLCs allows attackers to modify firmware

Discussion in 'Help Net Security' started by RSS, Aug 17, 2016.

  1. RSS

    RSS New Member Member

    There is an undocumented SNMP community string in Rockwell Automation’s MicroLogix 1400 programmable logic controllers that can be exploited by attackers to remotely change settings or modify the device firmware, and therefore compromise the PLCs. The vulnerability was found by Cisco Talos researcher Patrick DeSantis in versions 7 to 15.004 of the PLC systems (a full list of vulnerable product can be found here). The affected PLCs are intended for use in general industrial machinery, … More →

    Continue reading...

Share This Page