Advantech / BroadWin WebAccess webvrpcs.exe Service Remote Code Execution (uncredentialed check) (deprecated)
Critical Nessus Plugin ID 56995
SynopsisThis plugin has been deprecated.
DescriptionThe Advantech / BroadWin WebAccess software installed on the remote Windows host includes an RPC service (webvrpcs.exe) that listens remotely on TCP port 4592. It is affected by two vulnerabilities :
- An overflow condition exists due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this, via a specially crafted request, to execute arbitrary code.
- An information disclosure vulnerability exists that allows an unauthenticated, remote attacker to obtain the security code value that protects the SCADA node via a long string in an RPC request to TCP port 4592.
This plugin has been deprecated due to false positives.