ICS-CERT has published an advisory describing several vulnerabilities, including ones rated critical, in Rockwell Automation’s Allen-Bradley MicroLogix programmable logic controllers (PLCs). Firmware updates that patch the flaws are available only for some devices.
A total of five security holes were reported to Rockwell Automation by researchers at Georgia Tech, Fortiphyd Logic and Positive Technologies. They affect various models of the Allen-Bradley MicroLogix 1100 and 1400 PLCs, both series A and B, running version 16.00 and earlier of the firmware.
