PT-2018-9993 · Wecon · Levistudiou

Ghirmay Desta

+2

·

Published

2018-07-26

·

Updated

2020-08-28

·

CVE-2018-10602

CVSS v2.0

9.3

High

VectorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions: WECON LeviStudio versions 1.8.29 through 1.8.44
Description: The issue is related to multiple stack-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files. This can lead to remote code execution. The estimated number of potentially affected devices worldwide is not provided. There is no information about real-world incidents where this issue was exploited.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Stack Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-787

Related Identifiers

CVE-2018-10602
ZDI-18-784
ZDI-18-785
ZDI-18-786
ZDI-18-787
ZDI-18-788
ZDI-18-789
ZDI-18-790
ZDI-18-791
ZDI-18-792
ZDI-18-793
ZDI-18-794
ZDI-18-795
ZDI-18-796
ZDI-18-797
ZDI-18-798
ZDI-18-799
ZDI-18-800
ZDI-18-801
ZDI-18-802
ZDI-18-803
ZDI-18-804
ZDI-18-805
ZDI-18-806
ZDI-18-807
ZDI-18-810
ZDI-18-811
ZDI-18-812
ZDI-18-813
ZDI-18-817
ZDI-18-818
ZDI-18-819
ZDI-18-820
ZDI-18-821
ZDI-18-822
ZDI-18-823
ZDI-18-824
ZDI-18-825
ZDI-18-826
ZDI-18-827
ZDI-18-828
ZDI-18-829
ZDI-18-830
ZDI-18-831
ZDI-18-832
ZDI-18-833
ZDI-18-834
ZDI-18-835
ZDI-18-836
ZDI-18-837
ZDI-18-838
ZDI-18-839
ZDI-18-840
ZDI-18-841
ZDI-18-842
ZDI-18-843
ZDI-18-844
ZDI-18-845
ZDI-18-846
ZDI-18-847
ZDI-18-848
ZDI-18-849
ZDI-18-850
ZDI-18-851
ZDI-18-852
ZDI-18-853
ZDI-18-854
ZDI-18-855
ZDI-18-856
ZDI-18-857
ZDI-18-858
ZDI-18-859
ZDI-18-860
ZDI-18-861
ZDI-18-862
ZDI-18-863
ZDI-18-864
ZDI-18-865
ZDI-18-868
ZDI-18-870
ZDI-18-871
ZDI-18-989
ZDI-18-991
ZDI-18-993
ZDI-18-994
ZDI-18-995
ZDI-18-996
ZDI-18-997

Affected Products

Levistudiou