Rewterz Threat Advisory -Delta Electronics TPEditor Multiple Vulnerabilities

Wednesday, September 11, 2019

Severity

Medium

Analysis Summary

CVE-2019-13540

Multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, which may allow an attacker to remotely execute arbitrary code.

CVE-2019-13536

Multiple heap-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, which may allow an attacker to remotely execute arbitrary code.

CVE-2019-13544

Multiple out-of-bounds write vulnerabilities may be exploited by processing specially crafted project files, which may allow remote code execution.

Impact

  • Remote code execution
  • Application crash

Affected Vendors

Delta Electronics

Affected Products

TPEditor Versions 1.94 and prior

Remediation

Delta Electronics recommends affected users update to the latest version Version 1.95.

http://www.deltaww.com/services/DownloadCenter2.aspx?secID=8&pid=2&tid=0&CID=06&itemID=060302&typeID=1&downloadID=&title=&dataType=8;&check=1&hl=en-US

Data Sheets

Corporate Brochure


Our Story


Services


Solutions


Managed Security


Upcoming Rewterz Trainings/Events

Rewterz News

  • 17, September 2019 Rewterz Threat Alert – Emotet Revival with Spam Emails Around the World
  • 17, September 2019 Rewterz Threat Advisory – CVE-2016-1409 – Cisco Products IPv6 Neighbor Discovery Crafted Packet Vulnerability
  • 17, September 2019 Rewterz Threat Alert – Phishing Attack Targets The Guardian’s Whistleblowing Site
  • 16, September 2019 Rewterz Threat Alert – InnfiRAT Malware Steals Litecoin And Bitcoin Wallet Information

Copyright © Rewterz. All rights reserved.