CVE-2019-3975

Stack-based buffer overflow in Advantech WebAccess/SCADA 8.4.1 allows a remote, unauthenticated attacker to execute arbitrary code via a crafted IOCTL 70603 RPC message.

Published : 2019-09-10 16:15 Updated : 2019-09-11 12:40

7.5
CVSS Score More info
Score 7.5 / 10
7.5
Vendor Product Version URI
Advantech Webaccess 8.4.1 cpe:/a:advantech:webaccess:8.4.1
  1. Advantech (1) Search CVE
    1. Webaccess (1) Search CVE
      1. 8.4.1

CWE

ID Name Description Links
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow. CVE

History of changes

Date Event
2019-09-11 12:40
2019-09-10 16:30

New CVE