Intrusion Prevention

Fuji.Electric.V-Server.Heap.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in Fuji Electric V-server.
The vulnerability is due to improper validation of user-supplied data in VPR project files. A remote attacker could exploit this vulnerability by enticing a target user into opening a crafted VPR file. Successful exploitation could result in the execution of arbitrary code under the security context of the target user.

Affected Products

Fuji Electric V-server 4.0.6 and prior

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://felib.fujielectric.co.jp/download/search2.htm?dosearch=1&site=global&lang=en&documentGroup=software

CVE References

CVE-2019-18240

Other References

ICSA-19-311-02