CVE-2017-11496

Name of the Vulnerable Software and Affected Versions Gemalto ACC (Admin Control Center) versions HASP SRM 2.10 through Sentinel LDK 7.50

Description The issue is related to a stack buffer overflow in the hasplms component, which can be exploited by remote attackers. This is achieved through the use of malformed ASN.1 streams in V2C and similar input files, allowing the execution of arbitrary code.

Recommendations For versions HASP SRM 2.10 through Sentinel LDK 7.50, consider disabling the hasplms component until a patch is available to prevent the execution of arbitrary code via malformed input files.