CVE-2018-17929

Name of the Vulnerable Software and Affected Versions Delta Industrial Automation TPEditor versions 1.90 and prior

Description The issue is related to multiple stack-based buffer overflow vulnerabilities that can be exploited by processing specially crafted project files. These vulnerabilities may allow an attacker to remotely execute arbitrary code due to a lack of user input validation before copying data from project files onto the stack.

Recommendations For versions 1.90 and prior, update to a version later than 1.90 to resolve the issue. As a temporary workaround, consider restricting the processing of project files from untrusted sources to minimize the risk of exploitation.