ByteOS Network

NVD Vulnerability Details :

CVE-2011-2957

Deferred

Source-cve@mitre.org

Published At-28 Jul, 2011 | 18:55

Updated At-11 Apr, 2025 | 00:51

Unspecified vulnerability in Rockwell Automation FactoryTalk Diagnostics Viewer before V2.30.00 (CPR9 SR3) allows local users to execute arbitrary code via a crafted FactoryTalk Diagnostics Viewer (.ftd) configuration file, which triggers memory corruption.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	6.9	MEDIUM	AV:L/AC:M/Au:N/C:C/I:C/A:C

CPE Matches

Rockwell Automation, Inc.

>>factorytalk_diagnostics_viewer>>Versions up to 2.10.02(inclusive)

cpe:2.3:a:rockwellautomation:factorytalk_diagnostics_viewer:*:*:*:*:*:*:*:*

Rockwell Automation, Inc.

>>factorytalk_diagnostics_viewer>>2.10

cpe:2.3:a:rockwellautomation:factorytalk_diagnostics_viewer:2.10:*:*:*:*:*:*:*

Rockwell Automation, Inc.

>>factorytalk_diagnostics_viewer>>2.10.01

cpe:2.3:a:rockwellautomation:factorytalk_diagnostics_viewer:2.10.01:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-noinfo	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
http://rockwellautomation.custhelp.com/app/answers/detail/a_id/448424	cve@mitre.org	N/A
http://www.securityfocus.com/bid/48962	cve@mitre.org	N/A
http://www.us-cert.gov/control_systems/pdf/ICSA-11-175-01.pdf	cve@mitre.org	US Government Resource
http://rockwellautomation.custhelp.com/app/answers/detail/a_id/448424	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/48962	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.us-cert.gov/control_systems/pdf/ICSA-11-175-01.pdf	af854a3a-2127-422b-91ae-364da2661108	US Government Resource

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History