Lucene search
Natnael Samson (@NattiSamson)ZDI-23-1793HistoryDec 15, 2023 - 12:00 a.m.
Delta Electronics DOPSoft DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
2023-12-1500:00:00
Natnael Samson (@NattiSamson)
www.zerodayinitiative.com
10
delta electronics
dopsoft
dpa files
buffer overflow
remote code execution
user interaction
validation
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DPA files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
cve
cve
CVE-2023-5944
2023-12-04 23:15:27
prion
prion
Stack overflow
2023-12-04 23:15:00
ics
ics
Delta Electronics DOPSoft
2023-11-30 12:00:00
nvd
nvd
CVE-2023-5944
2023-12-04 23:15:27
cvelist
cvelist
CVE-2023-5944 Delta Electronics DOPSoft Stack-based Buffer Overflow
2023-12-04 23:08:48