CyberSec.Space Logo
返回 CVE 浏览器

CVE-2011-2530

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.1530%
EPSS Percentile44.17th
Published2011年6月22日
Last Modified2026年4月29日

Vulnerability Description

Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlier in Rockwell Automation RSLinx Classic before 2.58 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed .eds file.

Affected Platforms (CPE)

📦
Rockwellautomation

Rslinx

< 2.58
📦
Rockwellautomation

Eds Hardware Installation Tool

<= 1.0.5.1

References & Advisories

🔗 http://rockwellautomation.custhelp.com/app/answers/detail/a_id/279194
🔗 http://www.kb.cert.org/vuls/id/127584
🔗 http://www.kb.cert.org/vuls/id/MAPG-8G9PWX
🔗 http://www.securityfocus.com/bid/48092
🔗 http://rockwellautomation.custhelp.com/app/answers/detail/a_id/279194
🔗 http://www.kb.cert.org/vuls/id/127584
🔗 http://www.kb.cert.org/vuls/id/MAPG-8G9PWX
🔗 http://www.securityfocus.com/bid/48092

相关漏洞威胁

CVE-2012-471510.0

Buffer overflow in LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5...

CVE-2020-120019.8

FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and p...

CVE-2019-65539.8

A vulnerability was found in Rockwell Automation RSLinx Classic versions 4.10.00 and prior. An input validation issue in a .dll fi...

CVE-2018-148299.8

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote threat actor to intentionally...