Delta Electronics Delta Industrial Automation DOPSoft DPS File wLogTitlesActionLen Buffer Overflow Remote Code Execution
Description
A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wLogTitlesActionLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A stack-based buffer overflow in Delta Electronics DOPSoft when parsing DPS files allows remote code execution via a crafted file.
Vulnerability
A stack-based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wLogTitlesActionLen field of a DPS file. The vulnerability affects all versions of DOPSoft, as the product is end-of-life [1].
Exploitation
An attacker can exploit this vulnerability by crafting a malicious DPS file with an overly long wLogTitlesActionLen field. The attacker must then entice a user to open the file using DOPSoft. No authentication or network access beyond file delivery is required [1].
Impact
Successful exploitation leads to remote code execution in the context of the user running DOPSoft. The attacker gains the ability to execute arbitrary code on the victim's system [1].
Mitigation
The affected product is end-of-life and no patches are available. Users should avoid opening DPS files from untrusted sources. Consider using alternative software or sandboxing environments to minimize risk [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1- Range: 2.00.00.00
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.