HTTP: WECON LeviStudioU Multiple Stack Buffer Overflow

This signature detects attempts to exploit a known vulnerability against WECON LeviStudioU. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the user.

Extended Description

WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to multiple stack-based buffer overflow instances while parsing project files, which may allow an attacker to execute arbitrary code.

Affected Products

We-con levistudiou

References

CVE: CVE-2021-23157

URL: http://www.zerodayinitiative.com/advisories/ZDI-22-039/ http://www.zerodayinitiative.com/advisories/ZDI-22-042/ http://www.zerodayinitiative.com/advisories/ZDI-22-044/ http://www.zerodayinitiative.com/advisories/ZDI-22-135/ http://www.zerodayinitiative.com/advisories/ZDI-22-131/ https://www.zerodayinitiative.com/advisories/ZDI-22-131/ https://www.zerodayinitiative.com/advisories/ZDI-22-135/ http://www.zerodayinitiative.com/advisories/ZDI-22-137/ http://www.zerodayinitiative.com/advisories/ZDI-22-034/ http://www.zerodayinitiative.com/advisories/ZDI-22-035/ http://www.zerodayinitiative.com/advisories/ZDI-22-036/ http://www.zerodayinitiative.com/advisories/ZDI-22-132/ http://www.zerodayinitiative.com/advisories/ZDI-22-136/ http://www.zerodayinitiative.com/advisories/ZDI-22-397/ http://www.zerodayinitiative.com/advisories/ZDI-22-399/ http://www.zerodayinitiative.com/advisories/ZDI-22-391/ http://www.zerodayinitiative.com/advisories/ZDI-22-392/ http://www.zerodayinitiative.com/advisories/ZDI-22-393/ http://www.zerodayinitiative.com/advisories/ZDI-22-394/ http://www.zerodayinitiative.com/advisories/ZDI-22-395/ http://www.zerodayinitiative.com/advisories/ZDI-22-040/ http://www.zerodayinitiative.com/advisories/ZDI-22-041/ http://www.zerodayinitiative.com/advisories/ZDI-22-043/ http://www.zerodayinitiative.com/advisories/ZDI-22-047/ http://www.zerodayinitiative.com/advisories/ZDI-22-138/ http://www.zerodayinitiative.com/advisories/ZDI-22-139/ http://www.zerodayinitiative.com/advisories/ZDI-22-140/ http://www.zerodayinitiative.com/advisories/ZDI-22-345/ http://www.zerodayinitiative.com/advisories/ZDI-22-403/ http://www.zerodayinitiative.com/advisories/ZDI-22-396/ http://www.zerodayinitiative.com/advisories/ZDI-22-401/

Short Name
HTTP:OVERFLOW:WECON-LEVISTUDIOU
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Buffer CVE-2021-23138 CVE-2021-23157 CVE-2021-43983 LeviStudioU Multiple Overflow Stack WECON
Release Date
03/03/2022
Supported Platforms

srx-branch-19.3

vsrx3bsd-19.2

srx-19.4

vsrx3bsd-19.4

srx-branch-19.4

vsrx-19.4

vsrx-19.2

srx-19.3

srx-branch-12.3

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx-12.3

vmx-19.3

srx-12.3

Sigpack Version
3590
False Positive
Unknown
Vendors

We-con

CVSS Score

6.8

Found a potential security threat?