Advantech.WebAccess.DVS.GetColor.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a Buffer Overflow vulnerability in the Advantech WebAccess.
The vulnerability, which is located in the "dvs.ocx" ActiveX control, can be exploited through a vulnerable method. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the targeted users' browser.

affected-products-logoAffected Products

Advantec WebAccess on Windows XP SP3 with IE6
Advantec WebAccess on Windows XP SP3 with IE7
Advantec WebAccess on Windows XP SP3 with IE8
Advantec WebAccess on Windows XP SP3 with IE9

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)