Intrusion PreventionWECON.LeviStudioU.Screendata.IndirectAddrR.Heap.Overflow
Description
This indicates an attack attempt against multiple Buffer Overflow vulnerabilities in WECON LeviStudioU.
The vulnerability is due to an error when the vulnerable software handles a crafted HSC file. A remote attacker can trick an unsuspecting user into opening a malicious webpage or crafted HSC file and exploit this to execute arbitrary code under the security context of the user process.
Affected Products
LeviStudioU, Versions 1.8.29 and 1.8.44
Impact
System Compromise: Remote attackers can gain control of vulnerable systems
Recommended Actions
Currently we are unaware of any vendor supplied patch for this issue.
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2019-02-01 | 14.540 | Name:Wecon. LeviStudioU. Screendata. IndirectAddrR. Heap. Overflow:WECON. LeviStudioU. Screendata. IndirectAddrR. Heap. Overflow |
| 2018-11-27 | 13.498 | Default_action:pass:drop |
| 2018-11-06 | 13.485 |
References
ICSA-18-212-03| ID | 47050 |
| Created | Nov 06, 2018 |
| Updated | Aug 09, 2023 |
| Risk |
|
| CVE ID | CVE-2018-10606 |
| Exploit Prediction Score | 0.59% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | SCADA |