← Back to home
ICSA-17-047-02  ·  Published 2017-03-21  ·  View on CISA ICS-CERT ↗

Rockwell Automation FactoryTalk Activation

CVSS 8.8 HIGH

Risk Summary

REPOSTED INFORMATION

CVEs (1)

Remediations

  • Rockwell Automation has released a new version of FactoryTalk Activation, Version 4.01, which addresses the identified vulnerability. Rockwell Automation recommends upgrading to the latest version of FactoryTalk Activation, Version 4.01 or later, which is available at the following location:
  • If unable to upgrade to the latest version, users should read Knowledgebase Article KB939382, which describes how to identify whether the service path contains spaces (i.e., is vulnerable); how to manually address this vulnerability through a registry edit; and the article describes the process of doing such edits.
  • Rockwell Automation's Knowledgebase Article KB939382 is available at the following location:
  • Rockwell Automation recommends, where feasible, the precautions and risk mitigation strategies to this type of attack, like those listed below.
  • Follow industry best-practices to harden PCs and servers, including antivirus/anti-malware and application whitelisting solutions. These recommendations are published in Knowledgebase Article KB546987, which is available at the following location:
  • Use trusted software, software patches, antivirus/anti-malware programs, and interact only with trusted web sites and attachments.
  • Employ training and awareness programs to educate users on the warning signs of a phishing or social engineering attack.

Affected Vendors

Rockwell Automation

Affected Products (30)

Rockwell Automation · SoftLogix 5800 FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · RSLinx Classic FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk eProcedure FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · RSLogix 500 FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk View Site Edition (SE) FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · RSNetWorx FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · RSLogix Emulate 5000 FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · RSLogix 5 FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk Information Server FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · Studio 5000 Logix Emulate FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk ViewPoint FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · Arena FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk Historian Site Edition (SE) FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk AssetCentre FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk Batch FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · RSLogix 5000 FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · Emonitor FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · Studio 5000 Architect FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk Gateway FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk EnergyMetrix FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk Metrics FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk Transaction Manager FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk VantagePoint FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk Historian Classic FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · RSView32 FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · RSFieldBus FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · Studio 5000 Logix Designer FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · Studio 5000 View Designer FactoryTalk Activation Service <= 4.00.02
Rockwell Automation · FactoryTalk View Machine Edition (ME) FactoryTalk Activation Service <= 4.00.02

Affected Sectors

Chemical, Critical Manufacturing, Food and Agriculture, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more