Advantech.WebAccess.SCADA.BwPAlarm.IOCTL.70022.Buffer.Overflow
Description
This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in Advantech WebAccess.
The vulnerability is due to improper validation of user-supplied data in BwPAlarm.dll while processing the IOCTL 70022 RPC messages. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the target system. Successful exploitation results in the heap-based buffer overflow condition, which may lead to the application crash or arbitrary code execution under context of Administrator.
Affected Products
Advantech WebAccess 8.4.3 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://support.advantech.com/support/DownloadSRDetail_New.aspx?SR_ID=1-MS9MJV&Doc_Source=Download
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |