SB2020070115 - Multiple vulnerabilities in Delta Industrial Automation DOPSoft

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Heap-based buffer overflow (CVE-ID: CVE-2020-14482)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the parsing of DPA files. A remote attacker can trick a victim to open a specially crafted project file, trigger heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

2) Out-of-bounds read (CVE-ID: N/A)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition when parsing the EnRcpNoName information within DPA files. A remote attacker can create a specially crafted DPA file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

• https://www.us-cert.gov/ics/advisories/icsa-20-182-01
• https://www.zerodayinitiative.com/advisories/ZDI-20-789/
• https://www.zerodayinitiative.com/advisories/ZDI-20-799/
• https://www.zerodayinitiative.com/advisories/ZDI-20-798/
• https://www.zerodayinitiative.com/advisories/ZDI-20-797/
• https://www.zerodayinitiative.com/advisories/ZDI-20-796/
• https://www.zerodayinitiative.com/advisories/ZDI-20-795/
• https://www.zerodayinitiative.com/advisories/ZDI-20-794/
• https://www.zerodayinitiative.com/advisories/ZDI-20-793/
• https://www.zerodayinitiative.com/advisories/ZDI-20-792/
• https://www.zerodayinitiative.com/advisories/ZDI-20-791/
• https://www.zerodayinitiative.com/advisories/ZDI-20-790/
• https://www.zerodayinitiative.com/advisories/ZDI-20-788/
• https://www.zerodayinitiative.com/advisories/ZDI-20-787/