Back to CVE Browser

CVE-2011-2530

CRITICAL

9.3

CVSS Severity Score

EPSS Score0.1530%

EPSS Percentile44.17th

PublishedJun 22, 2011

Last ModifiedApr 29, 2026

Vulnerability Description

Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlier in Rockwell Automation RSLinx Classic before 2.58 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed .eds file.

Affected Platforms (CPE)

📦

Rockwellautomation

Rslinx

< 2.58

📦

Rockwellautomation

Eds Hardware Installation Tool

<= 1.0.5.1

References & Advisories

🔗 http://rockwellautomation.custhelp.com/app/answers/detail/a_id/279194

🔗 http://www.kb.cert.org/vuls/id/127584

🔗 http://www.kb.cert.org/vuls/id/MAPG-8G9PWX

🔗 http://www.securityfocus.com/bid/48092

🔗 http://rockwellautomation.custhelp.com/app/answers/detail/a_id/279194

🔗 http://www.kb.cert.org/vuls/id/127584

🔗 http://www.kb.cert.org/vuls/id/MAPG-8G9PWX

🔗 http://www.securityfocus.com/bid/48092

Related Vulnerabilities

CVE-2012-471510.0

Buffer overflow in LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5...

CVE-2020-120019.8

FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and p...

CVE-2019-65539.8

A vulnerability was found in Rockwell Automation RSLinx Classic versions 4.10.00 and prior. An input validation issue in a .dll fi...

CVE-2018-148299.8

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote threat actor to intentionally...

CVE-2011-2530 Detail & Impact Analysis | CVSS 9.3 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space