ICS Advantech WebAccess SCADA ProjectName Parameter Buffer Overflow -3 (CVE-2014-0991)

Rule ID

1139074

Severity

Medium

Description

The vulnerability is due to insufficient input validation of the ProjectName parameter contained in the webvact.ocx ActiveX control, a part of the WebAccess Client.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

ICS threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2014-0991

T0866

T1574

Keywords

N/A

Date Created

2021/04/26

Last Updated

2025/06/04

This website uses cookies to ensure you get the best experience on our website.

Learn more