Rockwell Automation/Allen-Bradley MicroLogix 1400 1766-L32xxx Series A < 7.000 / Series B <= 11.000 HTTP Remote DoS
high Nessus Network Monitor Plugin ID 7199
Synopsis
A MicroLogix 1400 programmable logic controller (PLC) has been detected which is vulnerable to a Denial of Service attack vector.
Description
Rockwell Automation MicroLogix 1400 PLCs contain an unspecified flaw in the password mechanism that may allow a remote denial of service. The issue is only present when the HTTP server is enabled. This may allow a remote attacker to cause the program to crash.
Solution
Upgrade the firmware of MicroLogix 1400 1766-L32xxx Series A to 7.000 or Series B to 11.000.