ID
TITLE
Delta Industrial Automation PMSoft Stack Buffer Overflow Vulnerability
sources:
IVD: 7d801222-463f-11e9-b04c-000c29342cb1 //
IVD: f560a313-9806-49aa-9f7e-d109ad66f265 //
CNVD: CNVD-2017-22826
DESCRIPTION
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation PMSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within parsing of information for a TTreeView object in a new-format ppm project file. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute arbitrary code under the context of the current process. Delta Industrial Automation is the industry automation vendor for power management and cooling solutions worldwide. WPLSoft and PMSoft are Delta's PLC programming software. The length of the data provided by the user is not verified
sources:
ZDI: ZDI-17-707 //
CNVD: CNVD-2017-22826 //
IVD: 7d801222-463f-11e9-b04c-000c29342cb1 //
IVD: f560a313-9806-49aa-9f7e-d109ad66f265
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | |
sources:
IVD: 7d801222-463f-11e9-b04c-000c29342cb1 //
IVD: f560a313-9806-49aa-9f7e-d109ad66f265 //
CNVD: CNVD-2017-22826
AFFECTED PRODUCTS
| vendor: | delta industrial automation | model: | pmsoft | scope: | - | version: | - | |
| vendor: | delta | model: | industrial automation pmsoft | scope: | - | version: | - | |
| vendor: | delta | model: | industrial automation pmsoft | scope: | eq | version: | * | |
sources:
IVD: 7d801222-463f-11e9-b04c-000c29342cb1 //
IVD: f560a313-9806-49aa-9f7e-d109ad66f265 //
ZDI: ZDI-17-707 //
CNVD: CNVD-2017-22826
CVSS
SEVERITY | CVSSV2 | CVSSV3 |
| ZDI: | ZDI-17-707 | |
|
| value: | MEDIUM | | | CNVD: | CNVD-2017-22826 | |
|
| value: | MEDIUM | | | IVD: | 7d801222-463f-11e9-b04c-000c29342cb1 | |
|
| value: | MEDIUM | | | IVD: | f560a313-9806-49aa-9f7e-d109ad66f265 | |
|
| value: | MEDIUM | |
| | ZDI: | ZDI-17-707 | |
|
| severity: | MEDIUM | | baseScore: | 6.8 | | vectorString: | AV:N/AC:M/AU:N/C:P/I:P/A:P | | accessVector: | NETWORK | | accessComplexity: | MEDIUM | | authentication: | NONE | | confidentialityImpact: | PARTIAL | | integrityImpact: | PARTIAL | | availabilityImpact: | PARTIAL | | exploitabilityScore: | 8.6 | | impactScore: | 6.4 | | acInsufInfo: | NONE | | obtainAllPrivilege: | NONE | | obtainUserPrivilege: | NONE | | obtainOtherPrivilege: | NONE | | userInteractionRequired: | NONE | | version: | 2.0 | | | CNVD: | CNVD-2017-22826 | |
|
| severity: | MEDIUM | | baseScore: | 6.8 | | vectorString: | AV:N/AC:M/AU:N/C:P/I:P/A:P | | accessVector: | NETWORK | | accessComplexity: | MEDIUM | | authentication: | NONE | | confidentialityImpact: | PARTIAL | | integrityImpact: | PARTIAL | | availabilityImpact: | PARTIAL | | exploitabilityScore: | 8.6 | | impactScore: | 6.4 | | acInsufInfo: | NONE | | obtainAllPrivilege: | NONE | | obtainUserPrivilege: | NONE | | obtainOtherPrivilege: | NONE | | userInteractionRequired: | NONE | | version: | 2.0 | | | IVD: | 7d801222-463f-11e9-b04c-000c29342cb1 | |
|
| severity: | MEDIUM | | baseScore: | 6.8 | | vectorString: | AV:N/AC:M/AU:N/C:P/I:P/A:P | | accessVector: | NETWORK | | accessComplexity: | MEDIUM | | authentication: | NONE | | confidentialityImpact: | PARTIAL | | integrityImpact: | PARTIAL | | availabilityImpact: | PARTIAL | | exploitabilityScore: | 8.6 | | impactScore: | 6.4 | | acInsufInfo: | NONE | | obtainAllPrivilege: | NONE | | obtainUserPrivilege: | NONE | | obtainOtherPrivilege: | NONE | | userInteractionRequired: | NONE | | version: | 2.9 [IVD] | | | IVD: | f560a313-9806-49aa-9f7e-d109ad66f265 | |
|
| severity: | MEDIUM | | baseScore: | 6.8 | | vectorString: | AV:N/AC:M/AU:N/C:P/I:P/A:P | | accessVector: | NETWORK | | accessComplexity: | MEDIUM | | authentication: | NONE | | confidentialityImpact: | PARTIAL | | integrityImpact: | PARTIAL | | availabilityImpact: | PARTIAL | | exploitabilityScore: | 8.6 | | impactScore: | 6.4 | | acInsufInfo: | NONE | | obtainAllPrivilege: | NONE | | obtainUserPrivilege: | NONE | | obtainOtherPrivilege: | NONE | | userInteractionRequired: | NONE | | version: | 2.9 [IVD] | |
| |
sources:
IVD: 7d801222-463f-11e9-b04c-000c29342cb1 //
IVD: f560a313-9806-49aa-9f7e-d109ad66f265 //
ZDI: ZDI-17-707 //
CNVD: CNVD-2017-22826
TYPE
sources:
IVD: 7d801222-463f-11e9-b04c-000c29342cb1 //
IVD: f560a313-9806-49aa-9f7e-d109ad66f265
PATCH
| title: | Delta Industrial Automation PMSoft Stack Buffer Overflow Vulnerability Patch | url: | https://www.cnvd.org.cn/patchinfo/show/146941 | |
sources:
CNVD: CNVD-2017-22826
EXTERNAL IDS
| db: | ZDI | id: | ZDI-17-707 | |
| db: | CNVD | id: | CNVD-2017-22826 | |
| db: | ZDI_CAN | id: | ZDI-CAN-4111 | |
| db: | IVD | id: | 7D801222-463F-11E9-B04C-000C29342CB1 | |
| db: | IVD | id: | F560A313-9806-49AA-9F7E-D109AD66F265 | |
sources:
IVD: 7d801222-463f-11e9-b04c-000c29342cb1 //
IVD: f560a313-9806-49aa-9f7e-d109ad66f265 //
ZDI: ZDI-17-707 //
CNVD: CNVD-2017-22826
REFERENCES
| url: | http://www.zerodayinitiative.com/advisories/zdi-17-707/ | |
sources:
CNVD: CNVD-2017-22826
CREDITS
sources:
ZDI: ZDI-17-707
SOURCES
| db: | IVD | id: | 7d801222-463f-11e9-b04c-000c29342cb1 |
| db: | IVD | id: | f560a313-9806-49aa-9f7e-d109ad66f265 |
| db: | ZDI | id: | ZDI-17-707 |
| db: | CNVD | id: | CNVD-2017-22826 |
LAST UPDATE DATE
2022-05-17T02:10:31.123000+00:00
SOURCES UPDATE DATE
| db: | ZDI | id: | ZDI-17-707 | date: | 2017-08-24T00:00:00 |
| db: | CNVD | id: | CNVD-2017-22826 | date: | 2018-12-12T00:00:00 |
SOURCES RELEASE DATE
| db: | IVD | id: | 7d801222-463f-11e9-b04c-000c29342cb1 | date: | 2017-08-25T00:00:00 |
| db: | IVD | id: | f560a313-9806-49aa-9f7e-d109ad66f265 | date: | 2017-08-25T00:00:00 |
| db: | ZDI | id: | ZDI-17-707 | date: | 2017-08-24T00:00:00 |
| db: | CNVD | id: | CNVD-2017-22826 | date: | 2017-08-25T00:00:00 |
