This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects attempts to exploit buffer overflow vulnerability by searching for large arguements passed to the ltmm15 ActiveX control.
Sienzo Digital Music Mentor (DMM) is an application that helps students learn how to play guitar and bass.
The application is prone to a stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input.
Specifically, these issues affect the 'UnlockSupport' method of the application's 'ltmm15.dll' ActiveX control (CLSID: 00150BA1-B1BA-11CE-ABC6-F5B2E79D9E3F).
An attacker can exploit this issue to execute arbitrary code in the context of a user running the application. Failed attempts will likely result in denial-of-service conditions.
Digital Music Mentor 18.104.22.168 is vulnerable; other versions may also be affected.
- Sienzo Digital Music Mentor 2.6.4
Ensure that all vendor supplied patches have been applied.