Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SCADA_ADVANTECH_WEBACCESS_7_2_2014_07_30.NBIN
HistoryAug 24, 2015 - 12:00 a.m.

Advantech WebAccess 7.2 < 7.2-2014.07.30 Multiple ActiveX RCE

2015-08-2400:00:00
This script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.154

Percentile

95.9%

JSON

The remote host is running a version of Advantech WebAccess 7.2 prior to version 7.2-2014.07.30 It is, therefore, affected by multiple vulnerabilities :

  • An overflow condition exists in the webvact.ocx ActiveX control due to improper validation of user-supplied input when handling the ‘NodeName’ parameter. A remote, unauthenticated attacker can exploit this to cause a stack-based buffer overflow, potentially allowing the execution of arbitrary code. (CVE-2014-0985)

  • An overflow condition exists in the webvact.ocx ActiveX control due to improper validation of user-supplied input when handling the ‘GotoCmd’ parameter. A remote, unauthenticated attacker can exploit this to cause a stack-based buffer overflow, potentially allowing the execution of arbitrary code. (CVE-2014-0986)

  • An overflow condition exists in the webvact.ocx ActiveX control due to improper validation of user-supplied input when handling the ‘NodeName2’ parameter. A remote, unauthenticated attacker can exploit this to cause a stack-based buffer overflow, potentially allowing the execution of arbitrary code. (CVE-2014-0987)

  • An overflow condition exists in the webvact.ocx ActiveX control due to improper validation of user-supplied input when handling the ‘AccessCode’ parameter. A remote, unauthenticated attacker can exploit this to cause a stack-based buffer overflow, potentially allowing the execution of arbitrary code.
    (CVE-2014-0988)

  • An overflow condition exists in the webvact.ocx ActiveX control due to improper validation of user-supplied input when handling the ‘AccessCode2’ parameter. A remote, unauthenticated attacker can exploit this to cause a stack-based buffer overflow, potentially allowing the execution of arbitrary code.
    (CVE-2014-0989)

  • An overflow condition exists in the webvact.ocx ActiveX control due to improper validation of user-supplied input when handling the ‘UserName’ parameter. A remote, unauthenticated attacker can exploit this to cause a stack-based buffer overflow, potentially allowing the execution of arbitrary code. (CVE-2014-0990)

  • An overflow condition exists in an unspecified ActiveX control due to improper validation of user-supplied input when handling the ‘projectname’ parameter. A remote, unauthenticated attacker can exploit this to cause a stack-based buffer overflow, potentially allowing the execution of arbitrary code.
    (CVE-2014-0991)

  • An overflow condition exists in an unspecified ActiveX control due to improper validation of user-supplied input when handling the ‘password’ parameter. A remote, unauthenticated attacker can exploit this to cause a stack-based buffer overflow, potentially allowing the execution of arbitrary code. (CVE-2014-0992)

Binary data scada_advantech_webaccess_7_2_2014_07_30.nbin

Related

ics 1
openvas 1
nessus 1
coresecurity 1
securityvulns 2
cvelist 8
checkpoint_advisories 2
cve 8
nvd 8
prion 8
ics
ics
Advantech WebAccess Vulnerabilities
2018-09-06 12:00:00
openvas
openvas
Advantech WebAccess Multiple Stack Based Buffer Overflow Vulnerabilities
2014-09-08 00:00:00
nessus
nessus
Advantech WebAccess 7.2 < 7.2-2014.07.30 Multiple ActiveX RCE
2017-02-14 00:00:00
coresecurity
coresecurity
Advantech WebAccess Vulnerabilities
2014-09-02 00:00:00
securityvulns
securityvulns
[CORE-2014-0005] - Advantech WebAccess Vulnerabilities
2014-10-15 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2014-10-15 00:00:00
cvelist
cvelist
CVE-2014-0990
2014-09-20 10:00:00
CVE-2014-0992
2014-09-20 10:00:00
CVE-2014-0987
2014-09-20 10:00:00
checkpoint_advisories
checkpoint_advisories
Advantech WebAccess SCADA ProjectName Parameter Buffer Overflow (CVE-2014-0991)
2014-10-14 00:00:00
Advantech WebAccess SCADA Password Parameter Buffer Overflow (CVE-2014-0992)
2014-09-23 00:00:00
cve
cve
CVE-2014-0990
2014-09-20 10:55:04
CVE-2014-0992
2014-09-20 10:55:04
CVE-2014-0987
2014-09-20 10:55:04
nvd
nvd
CVE-2014-0990
2014-09-20 10:55:04
CVE-2014-0985
2014-09-20 10:55:03
CVE-2014-0987
2014-09-20 10:55:04
prion
prion
Stack overflow
2014-09-20 10:55:00
Stack overflow
2014-09-20 10:55:00
Stack overflow
2014-09-20 10:55:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.154

Percentile

95.9%

JSON
Related for SCADA_ADVANTECH_WEBACCESS_7_2_2014_07_30.NBIN
ics1openvas1nessus1coresecurity1securityvulns2cvelist8checkpoint_advisories2cve8nvd8prion8