Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:62173
HistoryApr 15, 2014 - 12:00 a.m.

Advantech WebAccess bwocxrun.ocx任意文件访问漏洞

2014-04-1500:00:00
Root
www.seebug.org
19

0.022 Low

EPSS

Percentile

89.6%

JSON

CVE ID:CVE-2014-0771

Advantech WebAccess HMI/SCADA是一款HMI/SCADA软件。

Advantech WebAccess BWOCXRUN.BwocxrunCtrl.1 ActiveX控件(bwocxrun.ocx)中的OpenUrlToBuffer方法存在安全漏洞,由于程序不正确对’file://’ URL进行校验,允许攻击者访问任意文件。
0
Advantech WebAccess 7.1
Advantech WebAccess 7.2版本已修复该漏洞,建议用户下载使用:
http://webaccess.advantech.com/

Related

cve 1
zdi 1
prion 1
cvelist 1
nvd 1
nessus 3
ics 1
openvas 1
cve
cve
CVE-2014-0771
2014-04-12 04:37:31
zdi
zdi
Advantech WebAccess bwocxrun.ocx OpenUrlToBuffer Information Disclosure Vulnerability
2014-05-19 00:00:00
prion
prion
Buffer overflow
2014-04-12 04:37:00
cvelist
cvelist
CVE-2014-0771
2014-04-12 01:00:00
nvd
nvd
CVE-2014-0771
2014-04-12 04:37:31
nessus
nessus
Advantech WebAccess Multiple BWOCXRUN.OCX ActiveX Vulnerabilities
2014-04-14 00:00:00
Advantech WebAccess < 7.2-2013.11.14 Multiple Vulnerabilities
2017-02-14 00:00:00
Advantech WebAccess < 7.2-2013.11.14 Multiple Vulnerabilities
2015-08-17 00:00:00
ics
ics
Advantech WebAccess Vulnerabilities
2018-09-06 12:00:00
openvas
openvas
Advantech WebAccess Multiple Vulnerabilities
2014-04-16 00:00:00

0.022 Low

EPSS

Percentile

89.6%

JSON
Related for SSV:62173
cve1zdi1prion1cvelist1nvd1nessus3ics1openvas1