Vulnerability identifier: #VU20351
Vulnerability risk: Low
Exploitation vector: Local
Exploit availability: No
Vendor: Delta Electronics, Inc.
The vulnerability allows a local attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error when processing a specially crafted project file. A local attacker can send a specially crafted project file, trigger a use-after-free vulnerability, gain sensitive information on the target system, execute arbitrary code, or crash the application.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
Install updates from vendor's website.
Vulnerable software versions
Delta Industrial Automation DOPSoft: 4.00.06.15
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?