CVE-2017-3893

Incomplete vulnerability mitigations

CVSS 1.9 LOWEPSS 0.5%CWE-693

In BlackBerry QNX Software Development Platform (SDP) 6.6.0, the default configuration of the QNX SDP system did not in all circumstances prevent attackers from modifying the GOT or PLT tables with buffer overflow attacks.

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N

Produtos afetados

BlackBerry · QNX Software Development Platform (QNX SDP)

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://support.blackberry.com/kb/articleDetail?articleNumber=000046674