Vulnerability research on SCADA HMI system
We present the case study of Advantech WebAccess and through this case study, we defined three phases for vulnerability research. Through the three phases, we analyze past vulnerabilities, several versions of the software and have managed to find new vulnerabilities on the latest version: 8.3.0. The...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
2018
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/10356/74088 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| Summary: | We present the case study of Advantech WebAccess and through this case study, we defined three phases for vulnerability research. Through the three phases, we analyze past vulnerabilities, several versions of the software and have managed to find new vulnerabilities on the latest version: 8.3.0. The new vulnerabilities are assigned as CVE-2018-7450 and CVE-2018-7451 which are currently given a status as RESERVED. We also mapped out the undocumented jump table of WebAccess network service as well as analyzing patches applied to Advantech WebAccess for its effectiveness. |
|---|