virus logo OT Vulnerability Protection

WECON.LeviStudioU.Project.File.Multiple.Heap.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against multiple Buffer Overflow vulnerabilities in WECON LeviStudio.
The vulnerability is due to an error when the vulnerable software handles a crafted LeviStudio project file. A remote attacker can trick an unsuspecting user into opening a malicious webpage or crafted project file and exploit this to execute arbitrary code under the security context of the user process.

affected-products-logoAffected Products

Wecon LeviStudio V7.32 and prior

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Coverage

OT Security DB

Version Updates

Date Version Status Detail
2024-05-28 27.794
Modified
 Name:WECON.
LeviStudio.
Project.
File.
Multiple.
Heap.
Buffer.
Overflow:WECON.
LeviStudioU.
Project.
File.
Multiple.
Heap.
Buffer.
Overflow
2023-10-12 25.655
Modified
 Sig Added

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-189-01 ZDI-16-388 ZDI-16-389 ZDI-16-382 ZDI-16-387 ZDI-16-390
ID 42833
Created Aug 18, 2016
Updated May 24, 2024
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Exploit Prediction Score 8.34%
Default Action drop
Active
Affected OS Other
Affected App SCADA
Profile Type Buffer Errors