ICS Advantech WebAccess SCADA webvact.ocx AccessCode/AccessCode2 Buffer Overflow -1 (CVE-2014-0767)

Rule ID

1059583

Severity

High

Description

A stack buffer overflow exists in Advantech's WebAccess SCADA software. This is due to insufficient input validation on the AccessCode2 parameter of the webvact.ocx ActiveX control, a part of the WebAccess Client.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

ICS threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2014-0768

CVE-2014-0767

ICSA-14-079-03

CVE-2014-0989

ICSA-14-261-01

T1189

T0817

Keywords

N/A

Date Created

2014/06/05

Last Updated

2025/05/07

This website uses cookies to ensure you get the best experience on our website.