PT-2018-5056 · Huawei · Huawei P9 Plus+1

Guang Gong

Publicado

2018-03-09

Atualizado

2018-03-29

CVE-2016-8783

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Huawei H60 (Honor 6) versions earlier than H60-L02 6.12.16 Huawei P9 Plus versions earlier than VIE-AL10BC00B356

Description The issue is related to a stack overflow in the touchscreen drive. An attacker can exploit this by tricking a user into installing a malicious application on the smartphone and sending a specific parameter to the touchscreen drive, which can cause the system to crash or escalate privileges.

Recommendations For Huawei H60 (Honor 6) versions earlier than H60-L02 6.12.16, update to version H60-L02 6.12.16 or later. For Huawei P9 Plus versions earlier than VIE-AL10BC00B356, update to version VIE-AL10BC00B356 or later.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2016-8783

Produtos afetados

Huawei H60

Huawei P9 Plus

PT-2018-5056 · Huawei · Huawei P9 Plus+1

CVE-2016-8783

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4