PT-2020-9674 · Shareit · Shareit

Published

2020-04-27

Updated

2021-07-21

CVE-2019-15234

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions SHAREit versions through 4.0.6.177

Description The issue arises from the failure to check the full message length from the received packet header, which is used for memory allocation. This could lead to a system denial of service due to uncontrolled memory allocation.

Recommendations For SHAREit versions through 4.0.6.177, update to a version that includes a fix for this issue to prevent uncontrolled memory allocation and potential system denial of service.

Exploit

Fix

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

CVE-2019-15234

Affected Products

Shareit

PT-2020-9674 · Shareit · Shareit

CVE-2019-15234

Weakness Enumeration

Related Identifiers

Affected Products

References · 5