CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-5802 – Delta Industrial Automation PMSoft File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-5802
An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft, Versions prior to 3.02.11, and PMSoft, Versions prior to 2.10.10. Multiple instances of out-of-bounds write conditions may allow malicious files to be read and executed by the affected software. Ha sido descubierto un problema en Delta Electronics WPLSoft, versiones anteriores a V2.42.11, ISPSoft, versiones anteriores a 3.02.11 y PMSoft, versiones anteriores a 2.10.10. Múltiples instancias de condiciones de escritura fuera de límites pueden permitir que archivos maliciosos sean leídos y ejecutados por el software afectado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation PMSoft. • http://www.securityfocus.com/bid/94887 https://ics-cert.us-cert.gov/advisories/ICSA-16-348-03 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-5805 – Delta Industrial Automation ISPSoft dvl File Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-5805
An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft, Versions prior to 3.02.11, and PMSoft, Versions prior to2.10.10. There are multiple instances of heap-based buffer overflows that may allow malicious files to cause the execution of arbitrary code or a denial of service. Ha sido descubierto un problema en Delta Electronics WPLSoft, versiones anteriores a V2.42.11, ISPSoft, versiones anteriores a 3.02.11 y PMSoft, versiones anteriores a 2,10.10. Existen múltiples instancias de desbordamientos de búfer basados en memoria dinámica que pueden permitir que los archivos maliciosos provoquen la ejecución de código arbitrario o una denegación de servicio. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation ISPSoft. • http://www.securityfocus.com/bid/94887 https://ics-cert.us-cert.gov/advisories/ICSA-16-348-03 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •