ID CVE-2018-6911
Summary The VBWinExec function in Node\AspVBObj.dll in Advantech WebAccess 8.3.0 allows remote attackers to execute arbitrary OS commands via a single argument (aka the command parameter).
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
exploit-db via4
description Advantech WebAccess 8.3.0 - Remote Code Execution. CVE-2018-6911. Remote exploit for Windows platform
file exploits/windows/remote/44031.html
id EDB-ID:44031
last seen 2018-02-13
modified 2018-02-13
platform windows
port
published 2018-02-13
reporter Exploit-DB
source https://www.exploit-db.com/download/44031/
title Advantech WebAccess 8.3.0 - Remote Code Execution
type remote
packetstorm via4
data source https://packetstormsecurity.com/files/download/146360/advantechwebaccessnode830-dllhijack.txt
id PACKETSTORM:146360
last seen 2018-02-15
published 2018-02-12
reporter Nassim Asrir
source https://packetstormsecurity.com/files/146360/Advantech-WebAccess-Node-8.3.0-DLL-Hijacking.html
title Advantech WebAccess Node 8.3.0 DLL Hijacking
refmap via4
Last major update 13-02-2018 - 09:29
Published 13-02-2018 - 09:29
Last modified 13-02-2018 - 09:29
Back to Top