Heap-Based Buffer Overflow Vulnerability in Advantech WebAccess

Heap-Based Buffer Overflow Vulnerability in Advantech WebAccess

CVE-2017-12704 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A heap-based buffer overflow issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. Researchers have identified multiple vulnerabilities where there is a lack of proper validation of the length of user-supplied data prior to copying it to the heap-based buffer, which could allow an attacker to execute arbitrary code under the context of the process.

Learn more about our Web App Pen Testing.