Advantech WebOP Designer Project File Heap Buffer Overflow Remote Code Execution Exploit

The specific flaw exists within the parsing of a pm3 project file. A heap-based buffer overflow vulnerability exists in a call to memcpy. An attacker can leverage this vulnerability to execute arbitrary code in the context of the process.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2017-12705
Product Version: 
2017_R2
Released Date: 
Wednesday, August 23, 2017 - 00:00