The Advantec WebAccess application installed on the remote host includes a third party βwebeye.ocxβ ActiveX control that is affected by a stack-based buffer overflow vulnerability when processing input to the βip_addressβ parameter. A remote attacker, using a specially crafted HTML file, can exploit this to execute arbitrary code or crash the application.
Binary data scada_advantech_webaccess_8_0.nbin