CVE-2016-5802 – Delta Industrial Automation PMSoft File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2016-5802

An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft, Versions prior to 3.02.11, and PMSoft, Versions prior to 2.10.10. Multiple instances of out-of-bounds write conditions may allow malicious files to be read and executed by the affected software. Ha sido descubierto un problema en Delta Electronics WPLSoft, versiones anteriores a V2.42.11, ISPSoft, versiones anteriores a 3.02.11 y PMSoft, versiones anteriores a 2.10.10. Múltiples instancias de condiciones de escritura fuera de límites pueden permitir que archivos maliciosos sean leídos y ejecutados por el software afectado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation PMSoft. • http://www.securityfocus.com/bid/94887 https://ics-cert.us-cert.gov/advisories/ICSA-16-348-03 • CWE-787: Out-of-bounds Write •