PT-2017-19101 · Fuji Electric · Monitouch V-Sft

Published

2017-08-10

Updated

2017-08-24

CVE-2017-9660

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Fuji Electric Monitouch V-SFT versions prior to 5.4.43.0

Description A Heap-Based Buffer Overflow was discovered, which may cause a crash or allow remote code execution. This issue affects the project file parsing functionality.

Recommendations For versions prior to 5.4.43.0, update to version 5.4.43.0 or later to resolve the issue. As a temporary workaround, consider restricting access to project file parsing functionality until a patch is applied.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2017-9660

ZDI-17-645

Affected Products

Monitouch V-Sft

PT-2017-19101 · Fuji Electric · Monitouch V-Sft

CVE-2017-9660

Weakness Enumeration

Related Identifiers

Affected Products

References · 6