CVE-2009-0473

Rockwell Automation ControlLogix 1756-ENBT/A - Open Redirect

Title source: llm

Description

Open redirect vulnerability in the web interface in the Rockwell Automation ControlLogix 1756-ENBT/A EtherNet/IP Bridge Module allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Exploits (1)

nomisec WORKING POC 3 stars

by akbarq · poc

https://github.com/akbarq/CVE-2009-0473-check

View Code ZIP pw:eip

References (5)

Core 5

Core References

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/619499

Vendor Advisory x_refsource_confirm

http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=57729

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/33636

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/33783

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/0347

Scores

EPSS 0.0022

EPSS Percentile 44.1%

Details

CWE

CWE-59

Status published

Products (1)

rockwellautomation/controllogix_1756-enbt\/a_ethernet\/_ip_bridge

Published Feb 06, 2009

Tracked Since Feb 18, 2026