Delta Electronics Delta Industrial Automation DOPSoft DPS File wTextLen Buffer Overflow Remote Code Execution

Vulnerability

A buffer overflow vulnerability exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing specially crafted DPS files. The flaw resides in the wTextLen field processing, where insufficient bounds checking allows an attacker to overwrite memory. The affected product is end-of-life (EOL) and the vulnerable version range includes all versions that process DPS files. No specific version numbers are provided in the available references [1].

Exploitation

Exploitation requires a remote, unauthenticated attacker to entice a user into opening a malicious DPS file [1]. No further authentication or network access is needed beyond the user action. The attacker crafts a DPS file with an oversized wTextLen value, which triggers a buffer overflow when DOPSoft reads the file. User interaction is required, typically achieved through social engineering or by hosting the file on a website [1].

Impact

Successful exploitation leads to remote code execution (RCE) in the context of the application [1]. The attacker can execute arbitrary commands, potentially gaining full control over the affected system, leading to compromise of confidentiality, integrity, and availability.

Mitigation

The affected product is end-of-life and no patches are available [1]. Users are advised to discontinue use of the software or isolate it from untrusted sources. No workaround is provided in the available references [1].