CVE-2009-0474

Published: Feb 6, 2009Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The web interface in the Rockwell Automation ControlLogix 1756-ENBT/A EtherNet/IP Bridge Module allows remote attackers to obtain "internal web page information" and "internal information about the module" via unspecified vectors. NOTE: this may overlap CVE-2002-1603.

Affected (1)

Products: Rockwellautomation: Controllogix 1756 Enbt/a Ethernet/ Ip Bridge

Rockwellautomation

1 product

Controllogix 1756 Enbt/a Ethernet/ Ip Bridge

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Rockwellautomation Controllogix 1756 Enbt/a Ethernet/ Ip Bridge	All versions

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (10)

http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=57729

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/33783

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/124059

Source: cve@mitre.org

US Government Resource

http://www.kb.cert.org/vuls/id/RGII-7MWKZ3

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2009/0347

Source: cve@mitre.org

http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=57729

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/33783

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/124059

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.kb.cert.org/vuls/id/RGII-7MWKZ3

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2009/0347

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.