Intrusion PreventionWECON.LeviStudio.DataLogTool.Edit.Stack-based.Buffer.Overflow
Description
This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in Wecon LeviStudio
A remote attacker may exploit this vulnerability by enticing the victim to open a crafted .csv data log file using a vulnerable version of the DataLogTool.exe. Successful exploitation could lead to code execution under the security context of the user. Unsuccessful exploitation would lead to the application crash.
Affected Products
Wecon LeviStudio 1.8.56 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the advisory provided by ICS-CERT for updates:
https://ics-cert.us-cert.gov/advisories/ICSA-19-036-03
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2019-08-16 | 14.671 | Sig Added |
| 2019-05-07 | 14.608 | Default_action:pass:drop |
| 2019-04-25 | 14.600 | Sig Added |
| 2019-04-24 | 14.599 |
References
ICSA-19-036-03| ID | 47768 |
| Created | Apr 24, 2019 |
| Updated | Aug 09, 2023 |
| Risk |
|
| CVE ID | CVE-2019-6537 |
| Exploit Prediction Score | 8.14% |
| Default Action | drop |
| Active | |
| Affected OS | Other |
| Affected App | SCADA |