Intrusion Prevention

Rockwell.Automation.EtherNet.IP.CIP.Commands.DoS

Description

This indicates an attack attempt against multiple Denial of Service vulnerabilities in Rockwell Automation EtherNet/IP.
The vulnerability is caused by an error when the vulnerable software handles malformed EtherNet/IP commands or CIP commands. It allows a remote attacker to crash vulnerable systems via sending a crafted packet to port 44818.

Affected Products

Rockwell Automation EtherNet/IP

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.