CVE-2017-8159

Published: Nov 22, 2017

Modified: Sep 16, 2024

PUBLISHED

Description

Some Huawei smartphones with software AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB-W09C233B012 have a type confusion vulnerability. The program initializes a variable using one type, but it later accesses that variable using a type that is different with the original type when do certain register operation. Successful exploit could result in buffer overflow then may cause malicious code execution.

Vendor	Product	Versions
Huawei Technologies Co., Ltd.	Agassi-L09HN,Agassi-W09HN,Kobe-L09AHN,Kobe-W09CHN,	affected `AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB-W09C233B012`

References

http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20171018-02-smartphone-en

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-8159

Description

Affected Products

References