Advantech WebAccess < 7.2-2013.11.14 Multiple Vulnerabilities

High Nessus Plugin ID 85411

Synopsis

The remote host is affected by multiple vulnerabilities.

Description

The remote host has a version of Advantech WebAccess prior to version 7.2-2013.11.14. It is, therefore, affected by multiple vulnerabilities :

- Multiple SQL Injection vulnerabilities exist in 'DBVisitor.dll' that can be exploited via specially crafted SOAP requests. (CVE-2014-0763)

- Multiple stack-based buffer overflow conditions exist in an ActiveX control. (CVE-2014-0764, CVE-2014-0765, CVE-2014-0766, CVE-2014-0767, CVE-2014-0768)

- The 'NodeName' parameter on the web interface is affected by a buffer overflow vulnerability.
(CVE-2014-0770)

- A flawed ActiveX control allows attackers to read arbitrary files. (CVE-2014-0771, CVE-2014-0772)

- A flawed ActiveX control allows certain executable names to be run from arbitrary path names.
(CVE-2014-0773)

Solution

Upgrade to Advantech WebAccess version 7.2-2013.11.14 or higher.

Plugin Details

Severity: High

ID: 85411

File Name: scada_advantech_webaccess_7_2_2013_11_14.nbin

Version: $Revision: 1.35 $

Type: remote

Family: SCADA

Published: 2015/08/17

Modified: 2018/06/15

Dependencies: 73645

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:advantech:webaccess

Required KB Items: www/scada_advantech_webaccess

Patch Publication Date: 2014/03/03

Vulnerability Publication Date: 2014/04/08

Reference Information

CVE: CVE-2014-0763, CVE-2014-0764, CVE-2014-0765, CVE-2014-0766, CVE-2014-0767, CVE-2014-0768, CVE-2014-0770, CVE-2014-0771, CVE-2014-0772, CVE-2014-0773

BID: 66718, 66722, 66725, 66728, 66732, 66733, 66740, 66742, 66749, 66750

ICSA: 14-079-03