The ChkCookie subroutine in an ActiveX control in broadweb/include/gChkCook.asp in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.
This weakness has been deprecated because it covered redundant concepts already described in CWE-287.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Advantech_webaccess | Advantech | * | 7.1 (including) |
Advantech_webaccess | Advantech | 5.0 (including) | 5.0 (including) |
Advantech_webaccess | Advantech | 6.0 (including) | 6.0 (including) |
Advantech_webaccess | Advantech | 7.0 (including) | 7.0 (including) |