PT-2018-18212 · Micro Focus · Micro Focus Client For Oes

Published

2018-05-21

Updated

2019-10-09

CVE-2018-7687

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Micro Focus Client for OES versions prior to 2 SP4 IR8a

Description The issue is related to a buffer overflow in ncfsd.sys, which could allow a local attacker to elevate privileges.

Recommendations For versions prior to 2 SP4 IR8a, update to version 2 SP4 IR8a or later to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2018-7687

ZDI-18-528

Micro Focus Client For Oes