Notified:  April 25, 2011 Updated: June 01, 2011

Status

Affected

Vendor Statement

Rockwell Automation has issued a software patch for the EDS Hardware Installation Tool that addresses this buffer overflow vulnerability. When applied, the patch replaces the RSEds.dll file with the modified version. Future releases of RSLinx Classic, starting with version 2.58 will include this modified version of the required files.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

• http://rockwellautomation.custhelp.com/app/answers/detail/a_id/276774
• http://rockwellautomation.custhelp.com/app/answers/detail/a_id/54102
• http://rockwellautomation.custhelp.com/app/answers/detail/a_id/279194