Denial of Service and Remote Code Execution in Rockwell Automation Connected Components Workbench (CCW)

Denial of Service and Remote Code Execution in Rockwell Automation Connected Components Workbench (CCW)

CVE-2014-5424 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an invalid property value to an ActiveX control that was built with an outdated compiler.

Learn more about our Web Application Penetration Testing UK.