Advantech WebAccess webvprcs IOCTL 70603 Stack Overflow
High Nessus Plugin ID 129292
SynopsisThe remote host is running a SCADA application that is affected by a stack-based buffer overflow vulnerability.
DescriptionThe Advantech WebAccess/SCADA Network Service (webvrpcs.exe) running on the remote host is affected by a stack-based buffer overflow vulnerability due to improper validation of user-supplied data when processing an IOCTL 70603 RPC request. An unauthenticated, remote attacker can exploit this, via a series of crafted requests, to cause a denial of service condition or the execution of arbitrary code.
Note that the software is reportedly affected by additional vulnerabilities; however, this plugin has not tested for these.
SolutionUpgrade to WebAccess/SCADA version 8.4.2 or later.