CVE-2017-12708: Buffer Overflow
First published: Wed Aug 30 2017(Updated: )
An Improper Restriction Of Operations Within The Bounds Of A Memory Buffer issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. Researchers have identified multiple vulnerabilities that allow invalid locations to be referenced for the memory buffer, which may allow an attacker to execute arbitrary code or cause the system to crash.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Advantech WebOP | <=8.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-12708?
CVE-2017-12708 has a medium severity level due to its potential to allow invalid memory buffer operations.
How do I fix CVE-2017-12708?
To fix CVE-2017-12708, upgrade Advantech WebAccess to version 8.2_20170817 or later.
What versions of Advantech WebAccess are affected by CVE-2017-12708?
Advantech WebAccess versions prior to 8.2_20170817 are affected by CVE-2017-12708.
What type of vulnerability is CVE-2017-12708?
CVE-2017-12708 is classified as an improper restriction of operations within the bounds of a memory buffer.
Can CVE-2017-12708 be exploited remotely?
Yes, CVE-2017-12708 can potentially be exploited by attackers who can access vulnerable Advantech WebAccess systems.
- agent/references
- agent/last-modified-date
- agent/first-publish-date
- agent/type
- agent/severity
- agent/weakness
- agent/author
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/advantech
- canonical/advantech webop
- version/advantech webop/8.2