CVE-2017-5175

EPSS 1.6%CWE-427

Advantech WebAccess 8.1 and earlier contains a DLL hijacking vulnerability which may allow an attacker to run a malicious DLL file within the search path resulting in execution of arbitrary code.

Produtos afetados

ICS-CERT · Advantech WebAccess Versions 8.1 and prior.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://ics-cert.us-cert.gov/advisories/ICSA-17-045-01 http://www.securityfocus.com/bid/96210