Intrusion Prevention

WECON.LeviStudioU.Alarm.Bitaddr.Stack.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in Wecon LeviStudioU.
The vulnerability is due to improper validation of the length of user-supplied data in the Alarm tag of UMP files. A remote attacker may exploit this vulnerability by enticing the victim to open a crafted LeviStudio project file using the vulnerable version of the software. Successful exploitation could lead to code execution under the security context of the user. Unsuccessful exploitation would lead to a hang or termination of the application.

Affected Products

Wecon LeviStudioU

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Wecon has not released an advisory or patch regarding this vulnerability.