Advantech Fixes Hole with Upgrade

Tuesday, January 7, 2014 @ 06:01 PM gHale

Advantech provided a free version upgrade that mitigates a Remote Procedure Call (RPC) vulnerability in the Advantech WebAccess and legacy BroadWin WebAccess software (WebAccess), according to a report on ICS-CERT.

This is a web browser based human-machine interface (HMI) product. The RPC vulnerability affects the WebAccess Network Service on Port 4592/TCP and allows remote code execution. Independent security researcher Rubén Santamarta found the vulnerability and released exploit code.

Sierra Wireless Discontinues Gateway
NovaTech DNP3 Vulnerability
Siemens COMOS Privilege Escalation
Cooper Ends Server after Finding Bug

This vulnerability affects all versions of WebAccess prior to Version 7.1 2013.05.30, including all legacy versions of either Advantech WebAccess or BroadWin WebAccess.

The successful exploit of this vulnerability could allow an attacker to remotely execute arbitrary code.

Advantech/Broadwin WebAccess is a Web-based HMI product used in energy, manufacturing, and building automation systems. The installation base is across Asia; North, Central, and South America; North Africa; the Middle East; and Europe. WebAccess Client software is available for desktop computers and laptops running

Windows 2000, XP, Vista, Server 2003, Windows 7, and Windows 8. A thin-client interface is available for Windows CE and Windows Mobile 5.0.

The code injection vulnerability exploits an RPC vulnerability in WebAccess Network Service on 4592/TCP.

CVE-2011-4041 is the case number assigned to this vulnerability, which has a CVSS v2 base score of 10.

An attacker can initiate this exploit from a remote machine without user interaction.

An exploit of this vulnerability went public and it requires a moderate level of skill to leverage it.

Advantech released a new version of WebAccess that mitigates this vulnerability. Users may upgrade to the latest version from any previous version of WebAccess at no charge. Download the latest version of WebAccess (V 7.1 2013.05.30) from the Advantech web site.

Advantech has also created the following site to share additional information about WebAccess.

Prior to the release of this new version, customers using WebAccess should refer to security considerations recommended by Advantech in the WebAccess Installation Manual.

Leave a Reply

You must be logged in to post a comment.