CVEs-PoC/2017/CVE-2017-12090.md

### [CVE-2017-12090](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12090)
![](https://img.shields.io/static/v1?label=Product&message=Allen%20Bradley&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=Allen%20Bradley%20Micrologix%201400%20Series%20B%20FRN%2021.2%2C%20Allen%20Bradley%20Micrologix%201400%20Series%20B%20FRN%2021.0%2C%20Allen%20Bradley%20Micrologix%201400%20Series%20B%20FRN%2015%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=denial%20of%20service&color=brightgreen)

### Description

An exploitable denial of service vulnerability exists in the processing of snmp-set commands of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted snmp-set request, when sent without associated firmware flashing snmp-set commands, can cause a device power cycle resulting in downtime for the device. An attacker can send one packet to trigger this vulnerability.

### POC

#### Reference
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0442

#### Github
No PoCs found on GitHub currently.