Delta Electronics Delta Industrial Automation TPEditor (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : Delta Electronics Equipment : Delta Industrial Automation TPEditor Vulnerability : Heap-based Buffer Overflow 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory...

T&W WIFI Repeater BE126 Arbitrary Code Execution Vulnerability

Gongjin Electronics T&W WIFI Repeater BE126 is a wireless internet repeater from Gongjin Electronics China. A security vulnerability exists in the Gongjin Electronics T&W WIFI Repeater BE126. The vulnerability can be exploited by a remote attacker to execute arbitrary code by sending the 'user'...

CVE-2018-7509

WPLSoft in Delta Electronics versions 2.45.0 and prior writes data from a file outside the bounds of the intended buffer space, which could cause memory corruption or may allow remote code execution...

CVE-2018-7494

WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length stack buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash...

Buffer overflow

WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length stack buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash...

Design/Logic Flaw

WPLSoft in Delta Electronics versions 2.45.0 and prior writes data from a file outside the bounds of the intended buffer space, which could cause memory corruption or may allow remote code execution...

Heap overflow

WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash...

CVE-2018-7509

WPLSoft in Delta Electronics versions 2.45.0 and prior writes data from a file outside the bounds of the intended buffer space, which could cause memory corruption or may allow remote code execution...

CVE-2018-7494

WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length stack buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash...

CVE-2018-7507

WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash...

CVE-2018-7494

WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length stack buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash...

CVE-2018-7507

WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash...

CVE-2018-7507

CVE-2018-7507 is a heap-based buffer overflow in Delta Electronics WPLSoft (versions ≤ 2.45.0). The vulnerability arises when the program reads a value larger than a fixed-length heap buffer from a file into the buffer, causing memory corruption that may enable remote code execution or crash the ...

CVE-2018-7494

CVE-2018-7494 affects Delta Electronics WPLSoft (versions 2.45.0 and prior). The vulnerability is a stack-buffer overflow: the software uses a fixed-length stack buffer and reads data from a file that can exceed the buffer, overwriting memory. Impact as described: remote code execution or applica...

CVE-2018-7509

CVE-2018-7509 affects Delta Electronics’ WPLSoft (versions 2.45.0 and earlier). The issue is an out-of-bounds write from data read from a file into a fixed buffer, described in multiple sources as a stack- and/or heap-based buffer overflow that can cause memory corruption and potential remote cod...

CVE-2018-7509

WPLSoft in Delta Electronics versions 2.45.0 and prior writes data from a file outside the bounds of the intended buffer space, which could cause memory corruption or may allow remote code execution...

Gongjin Electronics T&W WIFI Repeater BE126 Security Bypass Vulnerability

Gongjin Electronics T&W WIFI Repeater BE126 is a wireless internet repeater from Gongjin Electronics China. A security vulnerability exists in the Gongjin Electronics T&W WIFI Repeater BE126 due to a failure to authenticate the firmware during the upgrade process. The vulnerability can be exploit...

CVE-2018-8839

Delta PMSoft versions 2.10 and prior have multiple stack-based buffer overflow vulnerabilities where a .ppm file can introduce a value larger than is readable by PMSoft's fixed-length stack buffer. This can cause the buffer to be overwritten, which may allow arbitrary code execution or cause the...

Delta PMSoft Buffer Overflow Vulnerability

PMSoft is a software developed by DELTA ELECTRONICS, INC. in the category Miscellaneous Shareware. Delta PMSoft suffers from a buffer overflow vulnerability where a .ppm file can introduce a value that is larger than the value that can be read from PMSoft's fixed-length stack buffer. An attacker...

Delta Electronics PMSoft

1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION : Low skill level to exploit. Vendor : Delta Electronics Equipment : PMSoft Vulnerabilities : Multiple Stack-Based Buffer Overflow vulnerabilities 2. RISK EVALUATION Successful exploitation of these vulnerabilities could cause the application to crash;...