Details of VAR-190001-0875

ID

VAR-190001-0875

TITLE

Advantech BroadWin WebAccess Remote code execution vulnerability

Trust: 1.7

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-0539 // BID: 51941 // CNNVD: CNNVD-201202-184

DESCRIPTION

Advantech BroadWin is a fully browser-based Human Machine Interface (HMI) and Monitoring and Data Acquisition (SCADA) house arrest. A security vulnerability exists in the WebAccess web service provided by Advantech BroadWin WebAccess software, which is used by remote attackers to submit arbitrary code or denial of service attacks by submitting a specially crafted RPC request to TCP port 4592 or 14592. Advantech BroadWin WebAccess is prone to a remote code-execution vulnerability because it fails to sufficiently validate user-supplied data. Successful exploits will allow an attacker to run arbitrary code in the servers managed by the affected application. Failed attacks may cause denial-of-service conditions

Trust: 0.99

sources: CNVD: CNVD-2012-0539 // BID: 51941 // IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-0539

AFFECTED PRODUCTS

vendor:	advantech	model:	broadwin webaccess	scope:	-	version:	-	Trust: 0.6
vendor:	advantech	model:	broadwin webaccess	scope:	eq	version:	0	Trust: 0.3
vendor:	advantech	model:	broadwin webaccess null	scope:	eq	version:	*	Trust: 0.2

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-0539 // BID: 51941

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD:	a8ed6d9e-1f74-11e6-abef-000c29c66e3d
value:	HIGH
Trust: 0.2

IVD:	a8ed6d9e-1f74-11e6-abef-000c29c66e3d
severity:	HIGH
baseScore:	7.0
vectorString:	AV:N/AC:M/AU:S/C:P/I:N/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.8
impactScore:	7.8
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0 [IVD]
Trust: 0.2

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201202-184

TYPE

Unknown

Trust: 0.3

sources: BID: 51941

EXTERNAL IDS

db:	BID	id:	51941	Trust: 1.5
db:	ICS CERT ALERT	id:	ICS-ALERT-12-039-01	Trust: 0.9
db:	CNVD	id:	CNVD-2012-0539	Trust: 0.8
db:	CNNVD	id:	CNNVD-201202-184	Trust: 0.6
db:	IVD	id:	A8ED6D9E-1F74-11E6-ABEF-000C29C66E3D	Trust: 0.2

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-0539 // BID: 51941 // CNNVD: CNNVD-201202-184

REFERENCES

url:	http://www.us-cert.gov/control_systems/pdf/ics-alert-12-039-01.pdf	Trust: 0.9
url:	http://www.securityfocus.com/bid/51941	Trust: 0.6
url:	http://webaccess.advantech.com/product.php	Trust: 0.3

sources: CNVD: CNVD-2012-0539 // BID: 51941 // CNNVD: CNNVD-201202-184

CREDITS

amisto0x07 and Z0mb1E

Trust: 0.9

sources: BID: 51941 // CNNVD: CNNVD-201202-184

SOURCES

db:	IVD	id:	a8ed6d9e-1f74-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2012-0539
db:	BID	id:	51941
db:	CNNVD	id:	CNNVD-201202-184

LAST UPDATE DATE

2022-05-17T01:46:12.483000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2012-0539	date:	2012-02-13T00:00:00
db:	BID	id:	51941	date:	2012-02-09T00:00:00
db:	CNNVD	id:	CNNVD-201202-184	date:	2012-02-13T00:00:00

SOURCES RELEASE DATE

db:	IVD	id:	a8ed6d9e-1f74-11e6-abef-000c29c66e3d	date:	2012-02-13T00:00:00
db:	CNVD	id:	CNVD-2012-0539	date:	2012-02-13T00:00:00
db:	BID	id:	51941	date:	2012-02-09T00:00:00
db:	CNNVD	id:	CNNVD-201202-184	date:	1900-01-01T00:00:00