Lucene search
YuLin Sung of Trend Micro Zero Day InitiativeZDI-23-511HistoryMay 01, 2023 - 12:00 a.m.
Delta Electronics DIAScreen DPA File Parsing Buffer Overflow Remote Code Execution Vulnerability
2023-05-0100:00:00
YuLin Sung of Trend Micro Zero Day Initiative
www.zerodayinitiative.com
4
vulnerability
remote code execution
delta electronics diascreen
buffer overflow
dpa files
rtc section
exploit
malicious file
EPSS
0.001
Percentile
28.9%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DPA files. Crafted data in an RTC section can trigger an overflow of a buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
zdi
zdi
prion
prion
Buffer overflow
2023-02-08 23:15:00
nvd
nvd
CVE-2023-0251
2023-02-08 23:15:11
cve
cve
CVE-2023-0251
2023-02-08 23:15:11
cnvd
cnvd
Delta Electronics DIAScreen Buffer Overflow Vulnerability (CNVD-2023-08070)
2023-02-07 00:00:00
cvelist
cvelist
CVE-2023-0251 CVE-2023-0251
2023-02-08 22:47:40
ics
ics
Delta Electronics DIAScreen
2023-02-02 12:00:00