Intrusion Prevention

WECON.LeviStudio.MulStatus.szFilename.Stack.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in Wecon LeviStudio.
This vulnerability is due to improper parsing of XML attributes by the vulnerable application. A remote attacker may exploit this vulnerability by enticing the victim to open a LeviStudio project file with a crafted "G_Picture.xml" file using the vulnerable version of the software. Successful exploitation could lead to code execution under the security context of the user.

Affected Products

Wecon LeviStudio

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Wecon has not released an advisory or patch regarding this vulnerability.

CVE References

CVE-2019-6537