CVE-2018-8871

Description

In Delta Electronics Automation TPEditor version 1.89 or prior, parsing a malformed program file may cause heap-based buffer overflow vulnerability, which may allow remote code execution.

Affected products

• Delta Electronics / Automation TPEditorVersion 1.89 or prior – Version 1.89 or prior

References

• MISChttp://www.securityfocus.com/bid/104216
• VENDOR_ADVISORYhttps://ics-cert.us-cert.gov/advisories/ICSA-18-137-04