AVEVA InduSoft Web Studio Remote Command Execution Exploit

The MTCheckFileFunctionsTimeout function in UniSoft.dll does not check the user-supplied executable file name that is used to create a process. If the file name is already a full path, it will be passed as the lpCommandLine parameter to a CreateProcessW call.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2018-17914
Released Date: 
Wednesday, November 14, 2018 - 18:00