PT-2018-5056 · Huawei · Huawei P9 Plus+1

Guang Gong

Published

2018-03-09

Updated

2018-03-29

CVE-2016-8783

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Huawei H60 (Honor 6) versions earlier than H60-L02 6.12.16 Huawei P9 Plus versions earlier than VIE-AL10BC00B356

Description The issue is related to a stack overflow in the touchscreen drive. An attacker can exploit this by tricking a user into installing a malicious application on the smartphone and sending a specific parameter to the touchscreen drive, which can cause the system to crash or escalate privileges.

Recommendations For Huawei H60 (Honor 6) versions earlier than H60-L02 6.12.16, update to version H60-L02 6.12.16 or later. For Huawei P9 Plus versions earlier than VIE-AL10BC00B356, update to version VIE-AL10BC00B356 or later.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2016-8783

Affected Products

Huawei H60

Huawei P9 Plus

PT-2018-5056 · Huawei · Huawei P9 Plus+1

CVE-2016-8783

Weakness Enumeration

Related Identifiers

Affected Products

References · 4