CyberSec.Space Logo
Back to CVE Browser

CVE-2011-4525

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0510%
EPSS Percentile8.97th
PublishedFeb 21, 2012
Last ModifiedApr 29, 2026

Vulnerability Description

Advantech/BroadWin WebAccess before 7.0 allows remote attackers to trigger the extraction of arbitrary web content into a batch file on a client system, and execute this batch file, via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Advantech

Advantech Webaccess

<= 6.0
πŸ“¦
Advantech

Advantech Webaccess

= 5.0

References & Advisories

πŸ”— http://www.securityfocus.com/bid/52051
πŸ”— http://www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdf
πŸ”— http://www.securityfocus.com/bid/52051
πŸ”— http://www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdf

Related Vulnerabilities

CVE-2014-920810.0

Multiple stack-based buffer overflows in unspecified DLL files in Advantech WebAccess before 8.0.1 allow remote attackers to execu...

CVE-2017-127089.8

An Improper Restriction Of Operations Within The Bounds Of A Memory Buffer issue was discovered in Advantech WebAccess versions pr...

CVE-2017-126989.8

An Improper Authentication issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. Specially crafted requests...

CVE-2017-127069.8

A stack-based buffer overflow issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. Researchers have identi...