SCADA-logical: DoS vulnerabilities in Rockwell Automation FactoryTalk disclosed
Luigi Auriemma has uncovered multiple denial of service (DoS) vulnerabilities in Rockwell Automation's FactoryTalk supervisory control and data acquisition (SCADA) product, the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) announced.
The vulnerabilities are exploitable by sending specially crafted packets to the server, which can result in a DoS attack, according to an ICS-CERT advisory.
According to a company brochure, the FactoryTalk product extends the Rockwell Automation Integrated Architecture by providing an information tier of software applications and services for production and performance management. Integration with the Rockwell Automation Logix control platform, as well as connectivity to third-party and legacy systems enables FactoryTalk to deliver high-fidelity data flow across the enterprise.