CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2011-4041

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0190%
EPSS Percentile31.05th
Published2012年2月6日
Last Modified2026年4月29日

Vulnerability Description

webvrpcs.exe in Advantech/BroadWin WebAccess allows remote attackers to execute arbitrary code or obtain a security-code value via a long string in an RPC request to TCP port 4592.

Affected Platforms (CPE)

📦
Broadwin

Webaccess

All versions

References & Advisories

🔗 http://reversemode.com/index.php?option=com_content&task=view&id=72&Itemid=1
🔗 http://www.reversemode.com/downloads/Scada_Trojans_Ruben_Rootedcon.pdf
🔗 http://www.reversemode.com/downloads/exploit_advantech.zip
🔗 http://www.securityfocus.com/archive/1/517117
🔗 http://www.securityfocus.com/bid/47008
🔗 http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-081-01.pdf
🔗 http://www.us-cert.gov/control_systems/pdf/ICSA-11-094-02A.pdf
🔗 http://reversemode.com/index.php?option=com_content&task=view&id=72&Itemid=1

相關漏洞威脅

CVE-2007-217110.0

Stack-based buffer overflow in the base64_decode function in GWINTER.exe in Novell GroupWise (GW) WebAccess before 7.0 SP2 allows ...

CVE-2010-471410.0

Multiple stack-based buffer overflows in Novell GroupWise before 8.02HP allow remote attackers to execute arbitrary code via a lon...

CVE-2003-155110.0

Unspecified vulnerability in Novell GroupWise 6 SP3 WebAccess before Revision F has unknown impact and attack vectors related to "...

CVE-2011-452510.0

Advantech/BroadWin WebAccess before 7.0 allows remote attackers to trigger the extraction of arbitrary web content into a batch fi...