Client Application Firewall
Delta.Electronics.COMMGR.Simulator.Buffer.Overflow
Description
This indicates an attack attempt to exploit a Stack Buffer Overflow Vulnerability in Delta Electronics Industrial Automation COMMGR.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted request. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted request.
Affected Products
Delta Electronics Industrial Automation COMMGR 1.08 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor:
https://ics-cert.us-cert.gov/advisories/ICSA-18-172-01
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2024-05-27 | 27.793 |
Modified
|
Name:Delta. Industrial. Automation. COMMGR. Simulator. Buffer. Overflow:Delta. Electronics. COMMGR. Simulator. Buffer. Overflow |
| 2023-07-31 | 25.611 |
Modified
|
Name:Delta. Industrial. Automation. AHSIM5x0. Simulator. Buffer. Overflow:Delta. Industrial. Automation. COMMGR. Simulator. Buffer. Overflow |
| 2023-07-27 | 25.610 |
Modified
|
Name:Delta. Industrial. Automation. AHSIM_5x0. Simulator. Buffer. Overflow:Delta. Industrial. Automation. AHSIM5x0. Simulator. Buffer. Overflow |
| ID | 46470 |
| Created | Jul 27, 2018 |
| Updated | May 23, 2024 |
| CVE ID | |
| Risk |
|
| Exploit Prediction Score | 78.24% |
| Default Action | drop |
| Affected OS | Other |
| Affected App | SCADA |
| Profile Type | BufferErrors |