Medium
Multiple out-of-bounds read vulnerabilities may be exploited by processing specially crafted project files, which may allow an attacker to read information and/or crash the application.
Opening a specially crafted project file may overflow the heap, which may allow remote code execution, disclosure/modification of information, or cause the application to crash.
Application crash
Delta Electronics
DOPSoft Version 4.00.08.15 and prior
Refer to ICS advisory for the list of affected products and upgraded patches.