CVE-2017-9282

An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed.

Published : 2017-09-21 22:29 Updated : 2019-10-09 23:30

7.5
CVSS Score More info
Score 7.5 / 10
7.5
Vendor Product Version URI
Microfocus Visibroker 8.5 cpe:/a:microfocus:visibroker:8.5
  1. Microfocus (1) Search CVE
    1. Visibroker (1) Search CVE
      1. 8.5

CWE

ID Name Description Links
CWE-190 Integer Overflow or Wraparound The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control. CVE

History of changes

Date Event
2017-09-28 16:30
2017-09-21 22:29

New CVE