Remote Code Execution Vulnerability in Advantech WebAccess/SCADA 8.4.0 via Crafted IOCTL 10012 RPC Call

CVE-2019-3953 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Stack-based buffer overflow in Advantech WebAccess/SCADA 8.4.0 allows a remote, unauthenticated attacker to execute arbitrary code by sending a crafted IOCTL 10012 RPC call.

Learn more about our Web App Pen Testing.