CVE-2017-7924

HIGH

DoS Exploitation of Allen-Bradley

Title source: metasploit

Description

An Improper Input Validation issue was discovered in Rockwell Automation MicroLogix 1100 controllers 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and 1763-L16DWD. A remote, unauthenticated attacker could send a single, specially crafted Programmable Controller Communication Commands (PCCC) packet to the controller that could potentially cause the controller to enter a DoS condition.

Exploits (1)

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/scada/allen_bradley_pccc.rb

View Code ZIP pw:eip

References (2)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/99622

[Mitigation, Third Party Advisory, US Government Resource] https://ics-cert.us-cert.gov/advisories/ICSA-17-138-03

Scores

CVSS v3 7.5

EPSS 0.0995

EPSS Percentile 93.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-20

Status published

Products (5)

n/a/Rockwell Automation MicroLogix 1100 Controllers Rockwell Automation MicroLogix 1100 Controllers

rockwellautomation/1763-l16awa_firmware

rockwellautomation/1763-l16bbb_firmware

rockwellautomation/1763-l16bwa_firmware

rockwellautomation/1763-l16dwd_firmware

Published Sep 20, 2017

Tracked Since Feb 18, 2026