Advantech WebAccess SCADA GetUserPasswd BwPAlarm Buffer Overflow Exploit

The flaw exists in the GetUserPasswd function in BwPAlarm.dll due to improper validation of user-supplied data before copying the data to a fixed size stack-based buffer when processing an IOCTL 70603 RPC message.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2018-18999
Released Date: 
Thursday, October 24, 2019 - 19:00