CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-7713

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0370%
EPSS Percentile40.50th
Published2019年3月26日
Last Modified2024年11月21日

Vulnerability Description

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. There is a heap-based buffer overflow in the function responsible for printing the shell prompt, when a custom modifier is used to display information such as a process ID, IP address, or current working directory. Modifier expansion triggers this overflow, causing memory corruption or a crash (and also leaks memory address information).

Affected Platforms (CPE)

💻
Ghs

Integrity Rtos

= 5.0.4

References & Advisories

🔗 https://github.com/bl4ckic3/GHS-Bugs
🔗 https://www.ghs.com/products/rtos/integrity.html
🔗 https://github.com/bl4ckic3/GHS-Bugs
🔗 https://www.ghs.com/products/rtos/integrity.html

相关漏洞威胁

CVE-2019-77149.8

An issue was discovered in Interpeak IPWEBS on Green Hills INTEGRITY RTOS 5.0.4. It allocates 60 bytes for the HTTP Authentication...

CVE-2019-77117.5

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. The undocumented shell comm...

CVE-2019-77127.5

An issue was discovered in handler_ipcom_shell_pwd in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. ...

CVE-2019-77157.5

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. The main shell handler func...