Firmware manipulating string luckily not documented
Cisco has uncovered a potentially serious bug in widely used industrial control system kit.
The vulnerability in Allen-Bradley Rockwell Automation MicroLogix1400 Programmable Logic Controllers (PLCs) arose from the presence of an undocumented Simple Network Management Protocol (SNMP) community string.
The flaw might be leveraged by an attacker to gain full control of affected devices, security researchers at Cisco Talos warns.
Attackers can also manipulate configuration settings, replace the firmware running on the device with attacker-controlled code, or otherwise disrupt device operations.
Cisco Talos adds that “most operators are not likely to even be aware of [the flaw’s] existence” as the “SNMP string is not documented by the vendor”.
El Reg has requested comment from Allen-Bradley Rockwell Automation but we’ve yet to receive a response. ®
Sponsored: 2016 Cyberthreat defense report