Advantech WebAccess < 8.0.2015.08.16 Unspecified DLL String Handling Arbitrary Code Execution

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

The remote host has a web application running that is affected by an
arbitrary code execution vulnerability.

Description :

The Advantech WebAccess application running on the remote host is
prior to version 8.0.2015.08.16. It is, therefore, affected by an
arbitrary code execution vulnerability due to improper validation of
user-supplied input when handling an unspecified DLL string in a file.
A local attacker can exploit this, via a specially crafted
application, to cause a stack-based buffer overflow, resulting in the
execution of arbitrary code or a denial of service condition.

See also :

https://ics-cert.us-cert.gov/advisories/ICSA-15-258-04

Solution :

Upgrade to Advantech WebAccess version 8.0.2015.08.16 or later.

Risk factor :

Medium / CVSS Base Score : 6.9
(CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C)

Family: SCADA

Nessus Plugin ID: 86899 ()

Bugtraq ID: 76753

CVE ID: CVE-2014-9202

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now