You are here

Delta Industrial Automation DOPSoft (ICSA-18-151-01)

Delta Industrial Automation DOPSoft (ICSA-18-151-01)

Created: Friday, June 1, 2018 - 14:04
Categories:
Cybersecurity

The NCCIC has released an advisory on out-of-bounds read, heap-based buffer overflow, and stack-based buffer overflow vulnerabilities in Delta Industrial Automation DOPSoft. Versions 4.00.04 and prior are affected. Successful exploitation of these vulnerabilities could allow a remote attacker to read sensitive information, execute arbitrary code, and/or crash the application. Delta Electronics recommends affected users update to the latest version. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities. NCCIC/ICS-CERT.