CVE-2017-3893

Incomplete vulnerability mitigations

CVSS 1.9 LOWEPSS 0.5%CWE-693

In BlackBerry QNX Software Development Platform (SDP) 6.6.0, the default configuration of the QNX SDP system did not in all circumstances prevent attackers from modifying the GOT or PLT tables with buffer overflow attacks.

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N

Productos afectados

BlackBerry · QNX Software Development Platform (QNX SDP)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://support.blackberry.com/kb/articleDetail?articleNumber=000046674