← voltar
CVE-2014-0770

Advantech WebAccess Stack-based Buffer Overflow

CVSS 7.5 EPSS 2.6%CWE-121
By providing an overly long string to the UserName parameter, an attacker may be able to overflow the static stack buffer. The attacker may then execute code on the target device remotely.
AV:N/AC:L/Au:N/C:P/I:P/A:P
Produtos afetados
Advantech · WebAccess

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://ics-cert.us-cert.gov/advisories/ICSA-14-079-03https://www.cisa.gov/news-events/ics-advisories/icsa-14-079-03http://webaccess.advantech.com/http://www.securityfocus.com/bid/66740