Description
Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple stack-based buffer overflow vulnerabilities, caused by a lack of proper validation of the length of user-supplied data, may allow remote code execution.
Affected products
- Advantech / WebAccess/SCADAVersions 8.3.5 and prior. – Versions 8.3.5 and prior.
References
- VENDOR_ADVISORYhttps://ics-cert.us-cert.gov/advisories/ICSA-19-092-01
- VENDOR_ADVISORYhttps://www.zerodayinitiative.com/advisories/ZDI-19-585/