CVE-2017-9282

Summary

An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed.

Affected Software

VendorProductVersion RangeStatus
Micro FocusMicro Focus VisiBrokerVisiBroker 8.5 prior to SP4 HF3affected

Weaknesses

  • CWE-190: Integer Overflow (CWE-190) and Out-of-Bounds Write (CWE-787)

ADP Enrichment

CVE Program Container

Additional References

References