CVE-2017-5175

Summary

Advantech WebAccess 8.1 and earlier contains a DLL hijacking vulnerability which may allow an attacker to run a malicious DLL file within the search path resulting in execution of arbitrary code.

Affected Software

VendorProductVersion RangeStatus
ICS-CERTAdvantech WebAccess Versions 8.1 and prior.Advantech WebAccess Versions 8.1 and prior.affected

Weaknesses

  • CWE-427: UNCONTROLLED SEARCH PATH ELEMENT CWE-427

ADP Enrichment

CVE Program Container

Additional References

References