Pixarra Luminance Studio Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in Pixarra Luminance Studio version 2.17. This vulnerability allows local attackers to crash the application by sending malformed input through the keyboard interface. By creating a text file with arbitrary character sequences and prompting the application to process this input, attackers can cause the application to become unresponsive or terminate unexpectedly.

Impact

Exploitation of this vulnerability leads to a crash of the Luminance Studio application, causing it to become unresponsive or to terminate abnormally.

Reproduction

To reproduce this vulnerability, create a text file containing a sequence of arbitrary characters. Once the file is prepared, open Luminance Studio 2.17 and use the keyboard interface to input the malformed data. The application will process the input, leading to a denial-of-service condition by either freezing or crashing the program.