CVE-2017-11498

Name of the Vulnerable Software and Affected Versions Gemalto ACC (Admin Control Center) versions HASP SRM 2.10 through Sentinel LDK 7.50

Description The issue allows remote attackers to shut down the remote process, resulting in a denial of service. This can be achieved via a language pack (ZIP file) containing invalid HTML files.

Recommendations For Gemalto ACC (Admin Control Center) versions HASP SRM 2.10 through Sentinel LDK 7.50, consider restricting access to language packs and ZIP files to minimize the risk of exploitation. As a temporary workaround, avoid using language packs from untrusted sources until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.