MS-RPC: Advantech Webaccess webvrpcs Directory Traversal Remote Code Execution
This signature detects attempt to exploit a directory traversal and remote code execution vulnerability exists in Advantech WebAccess software. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to the remote service. Successful exploitation could lead to remote code execution on the target server with privileges of the application process.
Extended Description
A Path Traversal issue was discovered in WebAccess versions 8.3.2 and earlier. An attacker has access to files within the directory structure of the target device.
Affected Products
Advantech webaccess
References
BugTraq: 102424
CVE: CVE-2019-13552
URL: http://www.zerodayinitiative.com/advisories/zdi-20-447/
Short Name
MS-RPC:DCE-RPC-ADVANTECH-RCE
Severity
Major
Recommended
True
Recommended Action
Drop
Category
MS-RPC
Keywords
Advantech CVE-2017-16720 CVE-2019-13552 Code Directory Execution Remote Traversal Webaccess bid:102424 webvrpcs
Release Date
06/26/2018
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3819
False Positive
Unknown
Vendors
Advantech
CVSS Score
10.0
6.5