exploitDog

CVE-2017-2787

Опубликовано: 10 мар. 2017

Источник: nvd

CVSS3: 9

CVSS2: 9.3

EPSS Средний

Описание

A buffer overflows exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet can be sent to the victim's computer and can lead to a heap based buffer overflow resulting in potential remote code execution. This client is always listening, has root privileges, and requires no user interaction to exploit.

Ссылки

http://www.securityfocus.com/bid/96738
http://www.talosintelligence.com/reports/TALOS-2017-0282/
Technical Description
Third Party Advisory
http://www.securityfocus.com/bid/96738
http://www.talosintelligence.com/reports/TALOS-2017-0282/
Technical Description
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:pharos:popup:9.0:*:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.12955

Средний

9 Critical

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-pc9m-w56r-7mcw

CVSS3: 9

github

больше 3 лет назад

A buffer overflows exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet can be sent to the victim's computer and can lead to a heap based buffer overflow resulting in potential remote code execution. This client is always listening, has root privileges, and requires no user interaction to exploit.

EPSS

Процентиль: 94%

0.12955

Средний

9 Critical

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-119