CVE-2014-9202
published 2015-09-28CVE-2014-9202: Multiple stack-based buffer overflows in an unspecified DLL file in Advantech WebAccess before 8.0_20150816 allow remote attackers to execute arbitrary code…
PriorityP425medium6.9CVSS 2.0
AVLACMAuNCCICAC
EPSS
0.79%
51.8th percentile
Multiple stack-based buffer overflows in an unspecified DLL file in Advantech WebAccess before 8.0_20150816 allow remote attackers to execute arbitrary code via a crafted file that triggers long string arguments to functions.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| advantech | webaccess | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Advantech WebAccess Stack-Based Buffer Overflow Vulnerability
cisa_ics·2018-08-27
Advantech WebAccess Stack-Based Buffer Overflow Vulnerability
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Advantech WebAccess Stack-Based Buffer Overflow Vulnerability
Last RevisedAugust 27, 2018
Alert CodeICSA-15-258-04
## OVERVIEW
Ivan Sanchez from Nullcode Team has identified a stack-based buffer overflow vulnerability in Advantech’s WebAccess application. Advantech has produced a new version to mitigate this vulnerability. Ivan Sanchez has tested the new version to validate that it resolves the vulnerability.
## AFFECTED PRODUCTS
The following WebAccess versions are affected:
• WebAccess Version 8.0 and prior versions.
## IMPACT
An attacker may be able to exploit this vulne
GHSA
GHSA-hrhx-prwm-h3mc: Multiple stack-based buffer overflows in an unspecified DLL file in Advantech WebAccess before 8
ghsa_unreviewed·2022-05-17
CVE-2014-9202 [MEDIUM] CWE-119 GHSA-hrhx-prwm-h3mc: Multiple stack-based buffer overflows in an unspecified DLL file in Advantech WebAccess before 8
Multiple stack-based buffer overflows in an unspecified DLL file in Advantech WebAccess before 8.0_20150816 allow remote attackers to execute arbitrary code via a crafted file that triggers long string arguments to functions.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2015-09-28
Published