Advantech Studio Test Web Server Buffer Overflow

CVEs (1)

Remediations

• If the bundled test web server is being used in a production environment, Advantech recommends migrating to Microsoft Internet Information Services (IIS).
• Advantech further recommends that users of Advantech Studio take the following mitigation steps: Upgrade to the latest version and install the patch. The patch can be applied to Advantech Studio Version 6.1 and any earlier version. Users can get more information and download the patch. Minimize network exposure for all control system devices. Control system devices should not directly face the Internet.ICS-CERT ALERT, (http://www.us-cert.gov/control_systems/pdf/ICS-Alert-10-301-01.pdf). Control system networks and devices should be located behind firewalls, and be isolated from the business network. If remote access is required, secure methods such as virtual private networks (VPNs) should be utilized.

Affected Vendors

Affected Products (1)