Details of VAR-201807-2291

ID

VAR-201807-2291

TITLE

(0Day) Advantech WebAccess HMI Designer PM3 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

Trust: 0.7

sources: ZDI: ZDI-18-631

DESCRIPTION

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Advantech WebAccess HMI Designer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of project files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code under the context of the current process.

Trust: 0.7

sources: ZDI: ZDI-18-631

AFFECTED PRODUCTS

vendor:

advantech

model:

webaccess hmi designer

scope:

version:

Trust: 0.7

sources: ZDI: ZDI-18-631

CVSS

SEVERITY

CVSSV2

CVSSV3

ZDI:	ZDI-18-631
value:	MEDIUM
Trust: 0.7

ZDI:	ZDI-18-631
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.7

sources: ZDI: ZDI-18-631

EXTERNAL IDS

db:	ZDI_CAN	id:	ZDI-CAN-5587	Trust: 0.7
db:	ZDI	id:	ZDI-18-631	Trust: 0.7

sources: ZDI: ZDI-18-631

CREDITS

Ariele Caltabiano (kimiya)

Trust: 0.7

sources: ZDI: ZDI-18-631

SOURCES

db:

ZDI

id:

ZDI-18-631

LAST UPDATE DATE

2022-05-17T02:04:29.798000+00:00

SOURCES UPDATE DATE

db:

ZDI

id:

ZDI-18-631

date:

2018-07-13T00:00:00

SOURCES RELEASE DATE

db:

ZDI

id:

ZDI-18-631

date:

2018-07-13T00:00:00