Signature Detail

Short Name	MS-RPC:BROADWIN-BOF
Severity	Critical
Recommended	Yes
Recommended Action	Drop
Category	MS-RPC
Keywords	scada Advantech BroadWin rpc
Release Date	2011/06/01
Update Number	1930
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

MS-RPC: Advantech/BroadWin SCADA RPC Vulnerability

This signature detects attempts to access a known vulnerable in the Advantech/BroadWin SCADA MS-RPC interface. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.

Extended Description

Advantech/BroadWin SCADA WebAccess is prone to multiple remote vulnerabilities including an information-disclosure issue and a remote code-execution issue. An attacker can exploit these issues to execute arbitrary code and gain access to sensitive information. Other attacks may also be possible. Advantech/BroadWin SCADA WebAccess 7.0 is vulnerable; other versions may also be affected.

Affected Products

Advantech Advantech/BroadWin SCADA WebAccess 7.0

References

BugTraq: 47008
URL: http://reversemode.com/index.php?option=com_content&task=view&id=72&Itemid=1
URL: http://webaccess.advantech.com/product.php

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

MS-RPC: Advantech/BroadWin SCADA RPC Vulnerability

Extended Description

Affected Products

References