Intrusion Prevention

WECON.LeviStudio.PLC.Type.Buffer.Overflow

Description

This indicates an attack attempt against a Heap Buffer Overflow vulnerability in WECON LeviStudio.
The vulnerability is due to an error when the vulnerable software handles a crafted LeviStudio project file. A remote attacker can trick an unsuspecting user to open a crafted project file and exploit this to execute arbitrary code under the security context of the user.

Affected Products

Wecon LeviStudio V7.32 and prior

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Other References

ZDI-16-390