ID

VAR-190001-0875


TITLE

Advantech BroadWin WebAccess Remote code execution vulnerability

Trust: 1.7

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-0539 // BID: 51941 // CNNVD: CNNVD-201202-184

DESCRIPTION

Advantech BroadWin is a fully browser-based Human Machine Interface (HMI) and Monitoring and Data Acquisition (SCADA) house arrest. A security vulnerability exists in the WebAccess web service provided by Advantech BroadWin WebAccess software, which is used by remote attackers to submit arbitrary code or denial of service attacks by submitting a specially crafted RPC request to TCP port 4592 or 14592. Advantech BroadWin WebAccess is prone to a remote code-execution vulnerability because it fails to sufficiently validate user-supplied data. Successful exploits will allow an attacker to run arbitrary code in the servers managed by the affected application. Failed attacks may cause denial-of-service conditions

Trust: 0.99

sources: CNVD: CNVD-2012-0539 // BID: 51941 // IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-0539

AFFECTED PRODUCTS

vendor:advantechmodel:broadwin webaccessscope: - version: -

Trust: 0.6

vendor:advantechmodel:broadwin webaccessscope:eqversion:0

Trust: 0.3

vendor:advantechmodel:broadwin webaccess nullscope:eqversion:*

Trust: 0.2

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-0539 // BID: 51941

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d
value: HIGH

Trust: 0.2

IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d
severity: HIGH
baseScore: 7.0
vectorString: AV:N/AC:M/AU:S/C:P/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 6.8
impactScore: 7.8
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0 [IVD]

Trust: 0.2

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201202-184

TYPE

Unknown

Trust: 0.3

sources: BID: 51941

EXTERNAL IDS

db:BIDid:51941

Trust: 1.5

db:ICS CERT ALERTid:ICS-ALERT-12-039-01

Trust: 0.9

db:CNVDid:CNVD-2012-0539

Trust: 0.8

db:CNNVDid:CNNVD-201202-184

Trust: 0.6

db:IVDid:A8ED6D9E-1F74-11E6-ABEF-000C29C66E3D

Trust: 0.2

sources: IVD: a8ed6d9e-1f74-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-0539 // BID: 51941 // CNNVD: CNNVD-201202-184

REFERENCES

url:http://www.us-cert.gov/control_systems/pdf/ics-alert-12-039-01.pdf

Trust: 0.9

url:http://www.securityfocus.com/bid/51941

Trust: 0.6

url:http://webaccess.advantech.com/product.php

Trust: 0.3

sources: CNVD: CNVD-2012-0539 // BID: 51941 // CNNVD: CNNVD-201202-184

CREDITS

amisto0x07 and Z0mb1E

Trust: 0.9

sources: BID: 51941 // CNNVD: CNNVD-201202-184

SOURCES

db:IVDid:a8ed6d9e-1f74-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2012-0539
db:BIDid:51941
db:CNNVDid:CNNVD-201202-184

LAST UPDATE DATE

2022-05-17T01:46:12.483000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2012-0539date:2012-02-13T00:00:00
db:BIDid:51941date:2012-02-09T00:00:00
db:CNNVDid:CNNVD-201202-184date:2012-02-13T00:00:00

SOURCES RELEASE DATE

db:IVDid:a8ed6d9e-1f74-11e6-abef-000c29c66e3ddate:2012-02-13T00:00:00
db:CNVDid:CNVD-2012-0539date:2012-02-13T00:00:00
db:BIDid:51941date:2012-02-09T00:00:00
db:CNNVDid:CNNVD-201202-184date:1900-01-01T00:00:00