PT-2018-5092 · Vmware · Carbon Black

Kyriakos Economou

Publicado

2016-11-23

Atualizado

2018-03-07

CVE-2016-9570

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Carbon Black version 5.1.1.60603

Description The issue allows attackers to cause a denial of service by exploiting access to the NetMon named pipe, leading to an out-of-bounds read, invalid pointer dereference, and application crash.

Recommendations For version 5.1.1.60603, consider restricting access to the NetMon named pipe to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-254CWE-125CWE-476

Identificadores relacionados

BDU:2018-00699

CVE-2016-9570

Produtos afetados

Carbon Black

PT-2018-5092 · Vmware · Carbon Black

CVE-2016-9570

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4