PT-2017-15504 · Huawei · Honor 8 Pro
Publicado
2017-11-22
·
Atualizado
2017-12-11
·
CVE-2017-2717
CVSS v3.1
6.5
Média
| Vetor | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Honor 8 Pro versions Duke-L09C10B120 and earlier
Honor 8 Pro versions Duke-L09C432B120 and earlier
Honor 8 Pro versions Duke-L09C636B120 and earlier
Description
The issue is related to an integer overflow. An attacker can send a response message to the device with an illegal length field, potentially causing an integer overflow and restarting the modem system.
Recommendations
For versions Duke-L09C10B120 and earlier, update to a version later than Duke-L09C10B120 to resolve the issue.
For versions Duke-L09C432B120 and earlier, update to a version later than Duke-L09C432B120 to resolve the issue.
For versions Duke-L09C636B120 and earlier, update to a version later than Duke-L09C636B120 to resolve the issue.
Correção
Integer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Honor 8 Pro