The OpenUrlToBuffer method in the BWOCXRUN.BwocxrunCtrl.1 ActiveX control in bwocxrun.ocx in Advantech WebAccess prior to 7.2 allows remote malicious users to read arbitrary files via a file: URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
advantech advantech webaccess 7.0 |
||
advantech advantech webaccess 6.0 |
||
advantech advantech webaccess 5.0 |
||
advantech advantech webaccess |