CVE-2019-25623

Description

Luminance Studio 2.17 contains a denial of service vulnerability that allows local attackers to crash the application by providing malformed input through the keyboard interface. Attackers can create a text file with arbitrary character sequences and trigger the application to process the input, causing the application to become unresponsive or terminate abnormally.

References

• http://www.pixarra.com/
• http://www.pixarra.com/uploads/9/4/6/3/94635436/tbluminancestudio_install.exe
• https://www.exploit-db.com/exploits/46130
• https://www.vulncheck.com/advisories/luminance-studio-denial-of-service-via-malformed-input