Buffer overflow in Advantech Advantech_webaccess

CVE-2014-0990

Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the UserName parameter.

Vulnerability class: Buffer Overflow

EPSS: 0.017 (82.6th percentile) — read the EPSS interpretation.

Affected products

Advantech Advantech_webaccess — versions 7.2
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cve@mitre.org (US Government Resource, Third Party Advisory, x_refsource_MISC)
69535 (vdb-entry, x_refsource_BID)