Cisco Talos researchers discover potentially serious flaws in Rockwell Automation’s Allen-Bradley MicroLogix 1400 programmable logic controllers (PLCs) that leave the devices vulnerable to attack, according to an article from Securityweek. The company has released patches and mitigations to address some of the flaws.
According to the article, “the vulnerabilities can be exploited for denial-of-service (DoS) attacks, modifying a device’s configuration and ladder logic, and writing or removing data on its memory module.” This exploitation could result in severe damage in industrial environments. Cisco has reportedly published technical details and proof-of-concept code for each of the flaws while Rockwell Automation has released an advisory.
Read the complete article here.