Vulnerability Details : CVE-2014-2364
Public exploit exists!
Multiple stack-based buffer overflows in Advantech WebAccess before 7.2 allow remote attackers to execute arbitrary code via a long string in the (1) ProjectName, (2) SetParameter, (3) NodeName, (4) CCDParameter, (5) SetColor, (6) AlarmImage, (7) GetParameter, (8) GetColor, (9) ServerResponse, (10) SetBaud, or (11) IPAddress parameter to an ActiveX control in (a) webvact.ocx, (b) dvs.ocx, or (c) webdact.ocx.
Vulnerability category: OverflowExecute code
Exploit prediction scoring system (EPSS) score for CVE-2014-2364
Probability of exploitation activity in the next 30 days: 42.84%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 97 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2014-2364
-
Advantech WebAccess dvs.ocx GetColor Buffer Overflow
Disclosure Date: 2014-07-17First seen: 2020-04-26exploit/windows/browser/advantech_webaccess_dvs_getcolorThis module exploits a buffer overflow vulnerability in Advantec WebAccess. The vulnerability exists in the dvs.ocx ActiveX control, where a dangerous call to sprintf can be reached with user controlled data through the GetColor function. This module has been tested
CVSS scores for CVE-2014-2364
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2014-2364
-
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2014-2364
-
http://www.securityfocus.com/bid/68714
Advantech WebAccess CVE-2014-2364 Multiple Remote Stack Based Buffer Overflow VulnerabilitiesExploit
-
http://packetstormsecurity.com/files/128384/Advantech-WebAccess-dvs.ocx-GetColor-Buffer-Overflow.html
Advantech WebAccess dvs.ocx GetColor Buffer Overflow ≈ Packet StormExploit
-
http://ics-cert.us-cert.gov/advisories/ICSA-14-198-02
Advantech WebAccess Vulnerabilities | CISAThird Party Advisory;US Government Resource
Products affected by CVE-2014-2364
- cpe:2.3:a:advantech:advantech_webaccess:*:*:*:*:*:*:*:*
- cpe:2.3:a:advantech:advantech_webaccess:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:advantech:advantech_webaccess:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:advantech:advantech_webaccess:7.0:*:*:*:*:*:*:*