Main Vulnerability Database Exploits ID:4476 - Exploit for Format string error in Advantech WebAccess - CVE-2012-0242

ID:4476 - Exploit for Format string error in Advantech WebAccess - CVE-2012-0242

Published: August 11, 2020

Vulnerability identifier: #VU44238

Vulnerability risk: High

CVE-ID: CVE-2012-0242

CWE-ID: CWE-134

Exploitation vector: Remote access

Vulnerable software:
Advantech WebAccess

Link to public exploit:

https://www.exploit-db.com/exploits/17772/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Format string vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary code via format string specifiers in a message string.

Remediation

Install update from vendor's website.

ID:4476 - Exploit for Format string error in Advantech WebAccess - CVE-2012-0242

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human