Advantech WebAccess webvrpcs.exe IOCTL 70022 Stack Overflow
High Nessus Plugin ID 119845
SynopsisThe remote host is running a SCADA application that is affected by a remote code execution vulnerability.
DescriptionThe Advantech WebAccess/SCADA Network Service (webvrpcs.exe) running on the remote host is affected by a stack-based buffer overflow condition due to improper validation of user-supplied data when processing a DCERPC request. An unauthenticated, remote attacker can exploit this, via a series of crafted requests, to execute arbitrary code.
SolutionUpgrade to Advantech WebAccess/SCADA version 8.3.4 or later.