Mitsubishi Electric E-Designer SetupAlarm Font Stack Buffer Overflow (CVE-2017-9638)
A stack-based buffer overflow vulnerability exists in Mitsubishi's Electric E-Designer. The vulnerability is due to the missing input validation of the Font property of SetupAlarm section of the .mpa project file. A remote attacker can exploit this vulnerability by enticing a user to visit a...