HTTP: CyberLink LabelPrint 2.5 Stack Buffer Overflow

This signature detects attempts to exploit a known vulnerability against CyberLink. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the CyberLink.

Extended Description

Stack-based buffer overflows in CyberLink LabelPrint 2.5 allow remote attackers to execute arbitrary code via the (1) author (inside the INFORMATION tag), (2) name (inside the INFORMATION tag), (3) artist (inside the TRACK tag), or (4) default (inside the TEXT tag) parameter in an lpp project file.

Affected Products

Cyberlink labelprint

References

CVE: CVE-2017-14627

Short Name
HTTP:STC:DL:CYBERLNK-LPPFILE-OF
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
2.5 Buffer CVE-2017-14627 CyberLink LabelPrint Overflow Stack
Release Date
08/17/2021
Supported Platforms

srx-branch-19.3

vsrx3bsd-19.2

srx-19.4

vsrx3bsd-19.4

srx-branch-19.4

vsrx-19.4

vsrx-19.2

srx-19.3

srx-branch-12.3

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx-12.3

vmx-19.3

srx-12.3

Sigpack Version
3410
False Positive
Unknown
Vendors

Cyberlink

CVSS Score

6.8

Found a potential security threat?