Advantech.WA.IOCTL.10001.BwPFile.Arbitrary.File.Deletion
Description
This indicates an attack attempt to exploit an Arbitrary File Deletion Vulnerability in Advantech WebAccess.
The vulnerability is due to insufficient validation on user supplied paths before using them in file operations within BwPFile.exe. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the target system. Successful exploitation results in the deletion of arbitrary files from the target system, and may lead to denial of service conditions if important executables or libraries are deleted.
Affected Products
Advantech WebAccess 9.0.0 prior to 9.0.0.P0320900
Advantech WebAccess prior to 8.4.4.P0320844
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://support.advantech.com/support/DownloadSRDetail_New.aspx?SR_ID=1-MS9MJV&Doc_Source=Download
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |