var-201806-0576
Vulnerability from variot
Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length heap buffer where a value larger than the buffer can be read from a .dpa file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or cause the application to crash. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of fields in DPA files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code under the context of the current process. Delta Electronics Delta Industrial Automation DOPSoft is a set of human interface applications from Delta Electronics. A remote code-execution vulnerability 2. A stack-based buffer-overflow vulnerability 3. Failed attacks will cause denial of service conditions. DOPSoft 4.00.04 and prior are vulnerable
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "delta industrial automation dopsoft",
"scope": "lte",
"trust": 1.0,
"vendor": "deltaww",
"version": "4.00.04"
},
{
"_id": null,
"model": "industrial automation dopsoft",
"scope": "lte",
"trust": 0.8,
"vendor": "delta",
"version": "4.00.04"
},
{
"_id": null,
"model": "dopsoft",
"scope": null,
"trust": 0.7,
"vendor": "delta industrial automation",
"version": null
},
{
"_id": null,
"model": "electronics delta industrial automation dopsoft",
"scope": "lte",
"trust": 0.6,
"vendor": "delta",
"version": "\u003c=4.00.04"
},
{
"_id": null,
"model": "delta industrial automation dopsoft",
"scope": "eq",
"trust": 0.6,
"vendor": "deltaww",
"version": "4.00.04"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "eq",
"trust": 0.3,
"vendor": "delta",
"version": "4.0.4"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "eq",
"trust": 0.3,
"vendor": "delta",
"version": "4.0.1"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "eq",
"trust": 0.3,
"vendor": "delta",
"version": "2.0.5"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "eq",
"trust": 0.3,
"vendor": "delta",
"version": "2.00.04.09"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "ne",
"trust": 0.3,
"vendor": "delta",
"version": "4.00.04.22"
},
{
"_id": null,
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "delta industrial automation dopsoft",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1"
},
{
"db": "ZDI",
"id": "ZDI-18-536"
},
{
"db": "CNVD",
"id": "CNVD-2018-12140"
},
{
"db": "BID",
"id": "104375"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006533"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-810"
},
{
"db": "NVD",
"id": "CVE-2018-10617"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:delta_electronics:delta_industrial_automation_dopsoft",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-006533"
}
]
},
"credits": {
"_id": null,
"data": "B0nd @garagehackers",
"sources": [
{
"db": "BID",
"id": "104375"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-810"
}
],
"trust": 0.9
},
"cve": "CVE-2018-10617",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CVE-2018-10617",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "ZDI",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CVE-2018-10617",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "MEDIUM",
"trust": 0.7,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2018-12140",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.9 [IVD]"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2018-10617",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2018-10617",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2018-10617",
"trust": 0.8,
"value": "Critical"
},
{
"author": "ZDI",
"id": "CVE-2018-10617",
"trust": 0.7,
"value": "MEDIUM"
},
{
"author": "CNVD",
"id": "CNVD-2018-12140",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201806-810",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1",
"trust": 0.2,
"value": "CRITICAL"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1"
},
{
"db": "ZDI",
"id": "ZDI-18-536"
},
{
"db": "CNVD",
"id": "CNVD-2018-12140"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006533"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-810"
},
{
"db": "NVD",
"id": "CVE-2018-10617"
}
]
},
"description": {
"_id": null,
"data": "Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length heap buffer where a value larger than the buffer can be read from a .dpa file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or cause the application to crash. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of fields in DPA files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code under the context of the current process. Delta Electronics Delta Industrial Automation DOPSoft is a set of human interface applications from Delta Electronics. A remote code-execution vulnerability\n2. A stack-based buffer-overflow vulnerability\n3. Failed attacks will cause denial of service conditions. \nDOPSoft 4.00.04 and prior are vulnerable",
"sources": [
{
"db": "NVD",
"id": "CVE-2018-10617"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006533"
},
{
"db": "ZDI",
"id": "ZDI-18-536"
},
{
"db": "CNVD",
"id": "CNVD-2018-12140"
},
{
"db": "BID",
"id": "104375"
},
{
"db": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1"
}
],
"trust": 3.24
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2018-10617",
"trust": 4.2
},
{
"db": "ICS CERT",
"id": "ICSA-18-151-01",
"trust": 3.3
},
{
"db": "BID",
"id": "104375",
"trust": 1.9
},
{
"db": "CNVD",
"id": "CNVD-2018-12140",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201806-810",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006533",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-5974",
"trust": 0.7
},
{
"db": "ZDI",
"id": "ZDI-18-536",
"trust": 0.7
},
{
"db": "IVD",
"id": "E3007681-39AB-11E9-9CE6-000C29342CB1",
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1"
},
{
"db": "ZDI",
"id": "ZDI-18-536"
},
{
"db": "CNVD",
"id": "CNVD-2018-12140"
},
{
"db": "BID",
"id": "104375"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006533"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-810"
},
{
"db": "NVD",
"id": "CVE-2018-10617"
}
]
},
"id": "VAR-201806-0576",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-12140"
}
],
"trust": 1.7285714
},
"iot_taxonomy": {
"_id": null,
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-12140"
}
]
},
"last_update_date": "2024-11-23T22:41:49.999000Z",
"patch": {
"_id": null,
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.deltaww.com/"
},
{
"title": "Delta Industrial Automation has issued an update to correct this vulnerability.",
"trust": 0.7,
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-151-01"
},
{
"title": "Patch for Delta Industrial Automation DOPSoft Heap Buffer Overflow Vulnerability (CNVD-2018-12140)",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/132875"
},
{
"title": "Delta Industrial Automation DOPSoft Buffer error vulnerability fix",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=81328"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-536"
},
{
"db": "CNVD",
"id": "CNVD-2018-12140"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006533"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-810"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-119",
"trust": 1.8
},
{
"problemtype": "CWE-122",
"trust": 1.0
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-006533"
},
{
"db": "NVD",
"id": "CVE-2018-10617"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 4.0,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-18-151-01"
},
{
"trust": 1.6,
"url": "http://www.securityfocus.com/bid/104375"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-10617"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-10617"
},
{
"trust": 0.3,
"url": "http://www.deltaww.com/"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-536"
},
{
"db": "CNVD",
"id": "CNVD-2018-12140"
},
{
"db": "BID",
"id": "104375"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006533"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-810"
},
{
"db": "NVD",
"id": "CVE-2018-10617"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-18-536",
"ident": null
},
{
"db": "CNVD",
"id": "CNVD-2018-12140",
"ident": null
},
{
"db": "BID",
"id": "104375",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006533",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201806-810",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2018-10617",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2018-06-27T00:00:00",
"db": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1",
"ident": null
},
{
"date": "2018-06-05T00:00:00",
"db": "ZDI",
"id": "ZDI-18-536",
"ident": null
},
{
"date": "2018-06-27T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-12140",
"ident": null
},
{
"date": "2018-05-31T00:00:00",
"db": "BID",
"id": "104375",
"ident": null
},
{
"date": "2018-08-24T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-006533",
"ident": null
},
{
"date": "2018-06-01T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201806-810",
"ident": null
},
{
"date": "2018-06-18T19:29:00.217000",
"db": "NVD",
"id": "CVE-2018-10617",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2018-06-05T00:00:00",
"db": "ZDI",
"id": "ZDI-18-536",
"ident": null
},
{
"date": "2018-11-05T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-12140",
"ident": null
},
{
"date": "2018-05-31T00:00:00",
"db": "BID",
"id": "104375",
"ident": null
},
{
"date": "2018-08-24T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-006533",
"ident": null
},
{
"date": "2019-10-17T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201806-810",
"ident": null
},
{
"date": "2024-11-21T03:41:40.460000",
"db": "NVD",
"id": "CVE-2018-10617",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201806-810"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Delta Electronics Delta Industrial Automation DOPSoft Buffer error vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-006533"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "Buffer error",
"sources": [
{
"db": "IVD",
"id": "e3007681-39ab-11e9-9ce6-000c29342cb1"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-810"
}
],
"trust": 0.8
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.