Today, I’ll walk you through a Insufficient Resource DoS attack (denial of service) vulnerability in the Allen-Bradley@Micrologix 1400 Series B devices with Firmware 21.2 and earlier are vulnerable to an insufficient resource pool issue. we can exploit this vulnerability by sending a crafted set of packets to flood the session resource pool, leading to disconnections […]
Insufficient Resource Pool DoS Attack on PLC @ExpDev-19 Read More »
Today, we’ll explore a program routine DoS attack ( denial of service) vulnerability in the Allen-Bradley Micrologix 1400 Series B, specifically affecting firmware version 21.2 and earlier. When a new program is downloaded to the PLC, it follows a specific routine to secure editing rights. If errors occur during this process, the PLC enters a
Program routine DoS attack on PLCs @ExpDev-18 Read More »
Today, I’ll walk you through a DoS attack (denial of service) vulnerability in the Ethernet functionality of the Allen Bradley Micrologix 1400 PLC – FRN 21.2 and below. This flaw can be exploited to cause a power cycle, fault state, and deletion of the PLC’s ladder logic—all triggered by sending a single, unauthenticated packet.. What
Critical Ethernet DoS Attack on PLCs @ExpDev-17 Read More »
In Exploit : Trigger HSC Faults , we’re tackling a significant vulnerability in the Allen Bradley Micrologix 1400 PLC. This time, our focus is on the ability to remotely trigger fault state. The High-Speed Counter (HSC) is a critical component in many PLC systems, designed to handle high-frequency counting tasks with precision. Comprising 36 sub-elements,
Exploit Dev # 16 : Trigger HSC Faults in PLC – Vulnerability @ Hack-the-Box Read More »
In Exploit : Trigger EII Faults , We’re addressing a critical vulnerability in the Allen-Bradley MicroLogix 1400 PLC, specifically focusing on the capability to remotely trigger a fault state. Event Input Interrupt (EII) is a powerful feature designed to trigger the scanning of specific program files or subroutines based on input conditions from field devices.
Exploit Dev # 15 : Trigger EII Faults in PLC – Vulnerability @ Hack-the-Box Read More »
In Exploit : Trigger STI Faults , We’re tackling a significant vulnerability in the Allen-Bradley MicroLogix 1400 PLC, with a focus on the ability to remotely trigger a fault state. The Selectable Timed Interrupt (STI), designed to handle time-critical control tasks with precision, can also be exploited if not properly secured. From an exploit perspective,
Exploit Dev # 14 : Trigger STI Faults in PLC – Vulnerability @ Hack-the-Box Read More »
In Exploit Development # 13 : Trigger Invalid Float Faults , we’re tackling a significant vulnerability in the Allen Bradley Micrologix 1400 PLC. This time, our focus is on the ability to remotely trigger fault state. In PLC configuration, even minor errors can cause major problems. One such issue is the vulnerability associated with setting
Exploit Dev # 13 : Trigger Invalid Float Faults in PLC – Vulnerability @ Hack-the-Box Read More »
In Exploit Development # 12 : User Fault Routine Exploitation , we’re tackling a significant vulnerability in the Allen Bradley Micrologix 1400 PLC. This time, our focus is on the ability to remotely trigger fault state. In PLC configuration, even minor errors can cause major problems. A notable example is the vulnerability where setting invalid
In this Remotely Changing IP Address, we’re tackling a significant vulnerability in the PLC. This time, our focus is on the ability to Changing IP the Address by altering Channel Config. Imagine having the power to not only control a PLC remotely but also to make it virtually untraceable. I’ve developed a method where I
Exploit Dev # 11 : Remotely Changing IP Address of PLC – Vulnerability @ Hack-the-Box Read More »
In Exploit Development # 10 : Remote Exploitation of HTTP Configuration , we’re tackling a significant vulnerability in the Allen Bradley Micrologix 1400 Series B. This time, our focus is on the ability to remotely enable or disable the HTTP server feature. Building on the groundwork laid in our previous exploit where we tackled SNMP
