CVE-2017-7903 : Security Advisory and Response

A security issue has been identified in certain models of Rockwell Automation Allen-Bradley MicroLogix programmable-logic controllers due to weak password requirements.

Understanding CVE-2017-7903

This CVE involves a Weak Password Requirements issue in Rockwell Automation Allen-Bradley MicroLogix 1100 and 1400 programmable-logic controllers.

What is CVE-2017-7903?

The affected models include 1763-L16AWA, 1763-L16BBB, 1763-L16BWA, 1763-L16DWD, 1766-L32AWA, 1766-L32BWA, 1766-L32BWAA, 1766-L32BXB, 1766-L32BXBA, and 1766-L32AWAA.

The Impact of CVE-2017-7903

The issue arises from the implementation of a numerical password system with a restricted character limit.

Technical Details of CVE-2017-7903

This section provides more in-depth technical information about the vulnerability.

Vulnerability Description

The affected products have a small maximum character size for the password, making them vulnerable to unauthorized access.

Affected Systems and Versions

Rockwell Automation Allen-Bradley MicroLogix 1100: Series A and B, Version 16.00 and earlier versions
Rockwell Automation Allen-Bradley MicroLogix 1400: Series A and B, Version 16.00 and earlier versions

Exploitation Mechanism

Unauthorized users can exploit the weak password requirements to gain access to the affected programmable-logic controllers.

Mitigation and Prevention

Protecting systems from this vulnerability is crucial for maintaining security.

Immediate Steps to Take

Change default passwords to strong, complex ones with an adequate character limit.
Implement multi-factor authentication where possible.
Regularly monitor and audit access to the controllers.

Long-Term Security Practices

Conduct regular security training for personnel on password best practices.
Keep firmware and software up to date to address security vulnerabilities.

Patching and Updates

Apply patches and updates provided by Rockwell Automation to address the weak password requirements issue.