Intrusion Prevention

Advantech.WebAccess.Node.webvrpcs.uninstallwa.DoS

Description

This indicates an attack attempt to exploit a Denial of Service Vulnerability in Advantech WebAccess.
A remote, unauthenticated attacker could exploit this vulnerability by sending a maliciously crafted RPC request to the target server. Successful exploitation could result in WebAccess being uninstalled and denial-of-service condition.

Affected Products

Advantech WebAccess 8.3.5 and prior

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Upgrade to the latest version available from the website.
https://support.advantech.com/support/DownloadSRDetail_New.aspx?SR_ID=1-MS9MJV&Doc_Source=Download

CVE References

CVE-2019-6554

Other References

ICSA-19-092-01