44 matches found
CVE-2014-0772
Advantech WebAccess is affected by CVE-2014-0772 in the bwocxrun.ocx ActiveX control (BwocxrunCtrl.1). The OpenUrlToBufferTimeout method accepts a URL and returns its contents to JavaScript, executing in the current browser session context. The vulnerability arises from lack of URL validation, al...
CVE-2014-0763
Summary of CVE-2014-0763 (Advantech WebAccess) : The vulnerability affects Advantech WebAccess (7.1 and earlier) in the DBVisitor.dll component exposed via SOAP interfaces, where SOAP injection enables SQL injection through the ChartThemeConfig/service vectors. This may allow an attacker to perfo...
CVE-2012-0236
CVE-2012-0236 affects Advantech/BroadWin WebAccess ≤7.0, where an unauthenticated user can access restricted information via a direct URL request (information exposure). The vendor reportedly does not consider it a security risk. Public advisories indicate multiple vulnerabilities were reported i...
CVE-2014-0764
Advantech WebAccess is affected by CVE-2014-0764 due to a stack-based buffer overflow in the NodeName parameter parsing of the webvact.ocx ActiveX control. The advisory material from Core Security (CORE-2014-0005) and related sources indicate the vulnerability could allow remote code execution wh...
CVE-2014-0986
Advantech WebAccess 7.2 is affected by CVE-2014-0986 due to a stack-based buffer overflow in the GotoCmd parameter, allowing an attacker to trigger arbitrary code execution. The Core Security CORE-2014-0005 advisory confirms a family of related stack overflow vulnerabilities in WebAccess 7.2 (and...
CVE-2014-0991
Advantech WebAccess 7.2 is affected by a stack-based buffer overflow in the webvact.ocx ActiveX control (projectname parameter) that could allow remote code execution. CoreLabs CORE-2014-0005 documents this family of vulnerabilities and notes a vendor fix via an update (WebAccess 7.2, 2014.07.30 ...
CVE-2014-0771
Advantech WebAccess BWOCXRUN.BwocxrunCtrl.1 OpenUrlToBuffer in bwocxrun.ocx allows reading arbitrary files via file:// URLs because there is no URL validation. This enables remote-access scenarios where an attacker could read local or reachable files through JavaScript, within the browser context...
CVE-2014-0766
Advantech WebAccess vulnerable to a stack-based buffer overflow in the webvact.ocx NodeName2 parameter, enabling remote code execution. Affected: WebAccess 7.2 and older; vulnerability described as CWE-121 in Core/ICS advisories. Mitigation via WebAccess version 7.2 or newer updates from Advantec...
CVE-2014-2364
Advantech WebAccess before version 7.2 is affected by multiple stack-based buffer overflows in the webvact.ocx, dvs.ocx, and webdact.ocx ActiveX controls. The vulnerability is triggered by overly long strings passed to parameters such as ProjectName, SetParameter, NodeName, CCDParameter, SetColor...
CVE-2014-0985
Advantech WebAccess 7.2 contains multiple stack-based buffer overflow vulnerabilities (CVE-2014-0985 through CVE-2014-0992) in ActiveX/ parsing code (notably NodeName, GotoCmd, NodeName2, AccessCode, AccessCode2, UserName, projectname, and password parameters). According to Core Security CORE-201...
CVE-2014-2367
CVE-2014-2367 – Advantech WebAccess (ActiveX error in gChkCook.asp) The vulnerability lies in the ChkCookie subroutine of the broadweb/include/gChkCook.asp ActiveX control used by Advantech WebAccess prior to version 7.2. A crafted call can cause the ActiveX to read arbitrary files on the local s...
CVE-2014-0767
CVE-2014-0767 is a buffer overflow in Advantech WebAccess’ webvact.ocx ActiveX control, triggered by an overly long AccessCode argument, enabling remote code execution via a crafted webpage. Affected product: Advantech WebAccess (WebAccess Webvact OCX). Root cause: stack-based overflow due to ins...
CVE-2011-4523
The CVE-2011-4523 issue affects Advantech/BroadWin WebAccess prior to version 7.0, where bwview.asp is vulnerable to cross-site scripting (XSS) via unspecified parameters, allowing remote attackers to inject arbitrary script or HTML. Public advisories describe the vulnerability class as XSS in th...
CVE-2014-0765
CVE-2014-0765 affects Advantech WebAccess (Webvact OCX) where the GotoCmd parameter can overflow a static stack buffer, enabling remote code execution. Multiple documents corroborate a stack-based overflow causing arbitrary code execution, with advisories attributing the issue to Advantech WebAcc...
CVE-2014-0773
Advantech WebAccess BWOCXRUN.BwocxrunCtrl.1 ActiveX bwocxrun.ocx contains CreateProcess validation that can be bypassed by command lines containing \setup.exe, \bwvbprt.exe, or \bwvbprtl.exe, allowing arbitrary commands to execute via CreateProcessA. ZDI confirms remote code execution; exploitati...
CVE-2014-0988
Advantech WebAccess 7.2 is affected by CVE-2014-0988, a stack-based buffer overflow in the AccessCode parameter that could allow remote code execution. The CoreSecurity CORE-2014-0005 advisory documents the vulnerability class and notes a vendor update (silent fix published around 30 July 2014); ...
CVE-2014-0768
The CVE-2014-0768 vulnerability affects Advantech WebAccess (SCADA/HMI WebAccess Client) via the webvact.ocx ActiveX control. It is caused by a stack-based buffer overflow when an overly long AccessCode2 parameter is supplied, allowing an attacker to remotely execute arbitrary code. Affected prod...
CVE-2014-2368
The CVE-2014-2368 issue affects Advantech WebAccess (prior to 7.2) via the bwocxrun ActiveX control. The BrowseFolder method can be abused to read arbitrary files, enabling remote read access. Root cause: Unsafe ActiveX control that allows navigation from the Internet to local files. Exploitation...
CVE-2014-0770
Summary of CVE-2014-0770: Advantech WebAccess (SCADA/HMI) is affected by a stack-based buffer overflow in the webvact.ocx ActiveX control, triggered by an overly long string supplied to the UserName parameter. This vulnerability could allow remote code execution on the target machine, as describe...
CVE-2011-4525
CVE-2011-4525 affects Advantech/BroadWin WebAccess prior to 7.0. A remote attacker can cause the client to create and execute a batch file by injecting arbitrary web content, enabling potential remote code execution. ICS-CERT notes Advantech released WebAccess 7.0 to address most vulnerabilities;...
CVE-2012-1234
CVE-2012-1234 describes an SQL injection in Advantech/BroadWin WebAccess 7.0 where remote authenticated users can execute arbitrary SQL via a malformed URL. The entry notes this vulnerability exists due to an incomplete fix for CVE-2012-0234. Connected records confirm affected product is Advantec...
CVE-2011-4524
The CVE-2011-4524 entry concerns Advantech/BroadWin WebAccess prior to version 7.0. The vulnerability is a buffer overflow triggered by a long string value in unspecified parameters, enabling remote code execution. Connected documents corroborate a family of vulnerabilities in WebAccess affecting...
CVE-2012-0234
Summary (useful, grounded in provided docs): CVE-2012-0234 (and related entries) describe an SQL injection flaw in Advantech/BroadWin WebAccess prior to 7.0, exploitable by remote authenticated users via a malformed URL to execute arbitrary SQL commands. Connected materials confirm WebAccess 7.0 ...
CVE-2011-4522
CVE-2011-4522 is a Cross-site Scripting (XSS) vulnerability in Advantech/BroadWin WebAccess prior to version 7.0, affecting the file bwerrdn.asp. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. Multiple connected sources document this XSS vulne...
CVE-2012-0243
The CVE-2012-0243 issue affects Advantech/BroadWin WebAccess prior to 7.0, where a stack/ActiveX buffer overflow in bwocxrun.ocx enables remote arbitrary-code execution by writing content to arbitrary pathnames. The vulnerability stems from input handling in the ActiveX control, allowing an attac...
CVE-2014-2366
CVE-2014-2366 affects Advantech WebAccess prior to 7.2, where upAdminPg.asp can disclose credentials to remote authenticated users by exposing them in the HTML source. Evidence from NVD/NIST and multiple advisories confirms the vulnerable component and the credential disclosure flaw, with a high ...
CVE-2012-0241
Advantech/BroadWin WebAccess prior to version 7.0 is affected by CVE-2012-0241, where a remote attacker can trigger memory corruption by supplying a modified stream identifier to a function, resulting in denial of service. The vulnerability is part of a broader set described in ICS-CERT advisorie...
CVE-2012-0242
CVE-2012-0242 : A format-string vulnerability in Advantech/BroadWin WebAccess prior to 7.0 allows remote execution of arbitrary code via a crafted message string. Public advisories note that attacks can be remote and exploitable for full control. ICS-CERT summarizes the impact as bypassing authen...
CVE-2012-0233
CVE-2012-0233 affects Advantech/BroadWin WebAccess before 7.0. The vulnerability is Cross-Site Scripting (CWE-79) via a malformed URL, enabling remote attackers to inject arbitrary web script or HTML. The NVD entry lists a MEDIUM (4.3) base score; exploitation status is noted as publicly known in...
CVE-2012-0235
CVE-2012-0235 is a CSRF vulnerability affecting Advantech/BroadWin WebAccess (7.0 and prior). The issue arises from an incomplete fix for CVE-2012-0235, enabling an attacker (often a remote, authenticated user) to hijack the victim’s session via unspecified vectors. Public references and Red Hat/...
CVE-2014-0987
Summary (CVE-2014-0987) : Advantech WebAccess 7.2 is affected by a stack-based buffer overflow when parsing the NodeName2 parameter, enabling remote code execution in the context of the vulnerable application. The vulnerability is reported as part of the Advantech WebAccess multi-CVE set (CVE-201...
CVE-2011-4521
CVE-2011-4521 describes an SQL injection vulnerability in Advantech/BroadWin WebAccess prior to version 7.0, allowing remote attackers to execute arbitrary SQL commands via crafted string input. Affected product: Advantech/BroadWin WebAccess (pre-7.0). Root cause centers on unsanitized input hand...
CVE-2012-0237
Advantech/BroadWin WebAccess before version 7.0 is affected by CVE-2012-0237, a remote vulnerability that allows an unauthenticated attacker to enable or disable date/time syncing via a crafted URL. The NVD entry (CVSS2 base score 6.4, Network vector, no authentication, partial integrity/availabi...
CVE-2014-2365
CVE-2014-2365 affects Advantech WebAccess before 7.2. An improper access control/flaw in WebAccess components allowed a remote attacker (in some docs, authenticated) to create or delete arbitrary files; ZDI notes a remote code execution path via gmicons.asp and file operations, with exploits publ...
CVE-2014-0989
Advantech WebAccess 7.2 contains a stack-based buffer overflow in the AccessCode2 parameter, leading to code execution. The CORE-2014-0005 advisory confirms multiple related CVEs (including CVE-2014-0989) and states the vulnerability is a client-side stack overflow; vendor issued a fix in a later...
CVE-2012-0244
Advantech/BroadWin WebAccess prior to version 7.0 contains multiple SQL injection vulnerabilities (CVE-2012-0244) that allow remote attackers to execute arbitrary SQL commands via crafted input. Affected product: Advantech/BroadWin WebAccess; vulnerability class: SQL Injection in user-supplied st...
CVE-2013-2299
CVE-2013-2299 affects Advantech WebAccess (formerly BroadWin WebAccess) prior to version 7.1 (2013-05-30). The vulnerability is a Cross-site Scripting (XSS) flaw that allows remote authenticated users to inject arbitrary HTML/script via unspecified vectors. NVD lists CVSSv2: base score 3.5 (low) ...
CVE-2014-0992
Advantech WebAccess 7.2 is affected by a stack-based buffer overflow in the ActiveX component when parsing the password parameter, enabling remote code execution if a user visits a crafted HTML page. The vulnerability is described across multiple sources (CoreLabs advisory CORE-2014-0005 and NVD ...
CVE-2011-4526
Advantech/BroadWin WebAccess prior to version 7.0 is affected by a vulnerability in an ActiveX control that can cause a stack/heap buffer overflow when processing a long string value in unspecified parameters. This could allow remote code execution on the server by an attacker sending a crafted r...
CVE-2012-0240
CVE-2012-0240 affects Advantech/BroadWin WebAccess prior to version 7.0. The vulnerability is in GbScriptAddUp.asp where authentication is not performed properly, allowing remote attackers to execute arbitrary code via unspecified vectors. The issue is remotely exploitable and public exploits are...
CVE-2012-0239
Summary: CVE-2012-0239 affects Advantech/BroadWin WebAccess prior to version 7.0. The issue is an authentication vulnerability in uaddUpAdmin.asp that allows remote, unauthenticated changes to the administrator password. Impact (as stated): attacker can modify an admin password remotely. Affected...
CVE-2012-1235
CVE-2012-1235 affects Advantech/BroadWin WebAccess 7.0 with a Cross-Site Request Forgery (CSRF) flaw that can allow remote authenticated users to hijack the authentication of unspecified victims, stemming from an incomplete fix for CVE-2012-0235. The ICS-CERT advisory notes that Advantech release...
CVE-2012-0238
CVE-2012-0238 affects Advantech/BroadWin WebAccess prior to 7.0. A stack-based buffer overflow in opcImg.asp could allow a remote attacker to execute arbitrary code. ICS-CERT notes multiple vulnerabilities in WebAccess 7.0 era; public exploits exist for these issues. Mitigation: Advantech release...
CVE-2014-0990
Advantech WebAccess 7.2 is affected by CVE-2014-0990 due to a stack-based buffer overflow in the UserName parameter of an ActiveX component. The Core Security CORE-2014-0005 advisory and related sources describe multiple CVEs (including CVE-2014-0990) in WebAccess 7.2, enabling remote code execut...