Delta CNCSoft ScreenEditor wFontTextLen Stack-based Buffer Overflow RCE (CVE-2019-10947)

## Vulnerability Information - **Date**: April 17th, 2019 - **Title**: Delta Industrial Automation CNCSoft ScreenEditor DPB File Parsing wFontTextLen Stack-based Buffer Overflow Remote Code Execution Vulnerability - **ID**: - ZDI-19-402 - ZDI-CAN-7810 - **CVE ID**: CVE-2019-10947 ### CVSS Score - **Score**: 7.8, AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H ### Affected Information - **Affected Vendor**: Delta Industrial Automation - **Affected Product**: CNCSoft ScreenEditor ### Vulnerability Details This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation CNCSoft ScreenEditor. User interaction is required to exploit this vulnerability. The flaw exists in the handling of DPB files, specifically when parsing the wFontTextLen element. ### Patch Information Delta Industrial Automation has released an update to fix this vulnerability. More details can be found at: https://ics-cert.us-cert.gov/advisories/ICSA-19-106-01 ### Disclosure Timeline - 2019-01-11 - Vulnerability reported to vendor - 2019-04-17 - Coordinated public release of advisory ### Acknowledgments - Natnael Samson (@NattiSamson) ``` The screenshot also displays the dates of security updates and incident response measures released in association with the specific vendor.

Goal Reached Thanks to every supporter — we hit 100%!

Delta CNCSoft ScreenEditor wFontTextLen Stack-based Buffer Overflow RCE (CVE-2019-10947)