PT-2017-19205 · Libmtp+1 · Libmtp+1

Published

2017-04-09

Updated

2020-04-05

CVE-2017-9831

CVSS v3.1

6.8

Medium

Vector

AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions libmtp versions 1.1.12 and below

Description The issue is related to an integer overflow in the ptp unpack EOS CustomFuncEx function, located in the ptp-pack.c file. This allows attackers to potentially cause a denial of service due to out-of-bounds memory access or possibly achieve remote code execution. The attack vector involves inserting a mobile device into a personal computer via a USB cable.

Recommendations For libmtp versions 1.1.12 and below, consider updating to a version above 1.1.12 to resolve the issue. As a temporary workaround, restrict the use of the ptp unpack EOS CustomFuncEx function until a patch is available.

Fix

RCE

DoS

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

ALT-PU-2017-1445

CVE-2017-9831

DLA-1029-1

DLA-2169-1

MGASA-2017-0225

Affected Products

Alt Linux

Libmtp

PT-2017-19205 · Libmtp+1 · Libmtp+1

CVE-2017-9831

Weakness Enumeration

Related Identifiers

Affected Products

References · 15