You are here

Delta Industrial Automation TPEditor (ICSA-18-284-03)

Delta Industrial Automation TPEditor (ICSA-18-284-03)

Created: Tuesday, October 16, 2018 - 13:18
Categories:
Cybersecurity

The NCCIC has released an advisory on out-of-bounds write and stack-based buffer overflow vulnerabilities in Delta Industrial Automation TPEditor. Versions 1.90 and prior are affected. Successful exploitation of these vulnerabilities could crash the accessed device, resulting in a buffer overflow condition that may allow remote code execution. Delta Electronics recommends affected users update to the latest version of Delta Industrial Automation TPEditor, Version 1.91. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities. NCCIC/ICS-CERT.