CVE-2011-2530
Severity CVSS v4.0:
Pending analysis
Type:
CWE-119
Buffer Errors
Publication date:
22/06/2011
Last modified:
11/04/2025
Description
Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlier in Rockwell Automation RSLinx Classic before 2.58 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed .eds file.
Impact
Base Score 2.0
9.30
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:rockwellautomation:rslinx:*:*:*:*:classic:*:*:* | 2.58 (excluding) | |
| cpe:2.3:a:rockwellautomation:eds_hardware_installation_tool:*:*:*:*:*:*:*:* | 1.0.5.1 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://rockwellautomation.custhelp.com/app/answers/detail/a_id/279194
- http://www.kb.cert.org/vuls/id/127584
- http://www.kb.cert.org/vuls/id/MAPG-8G9PWX
- http://www.securityfocus.com/bid/48092
- http://rockwellautomation.custhelp.com/app/answers/detail/a_id/279194
- http://www.kb.cert.org/vuls/id/127584
- http://www.kb.cert.org/vuls/id/MAPG-8G9PWX
- http://www.securityfocus.com/bid/48092