CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2019-7711

HIGH
7.5
CVSS Severity Score
EPSS Score0.1010%
EPSS Percentile32.51th
Published2019年3月26日
Last Modified2024年11月21日

Vulnerability Description

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. The undocumented shell command "prompt" sets the (user controlled) shell's prompt value, which is used as a format string input to printf, resulting in an information leak of memory addresses.

Affected Platforms (CPE)

💻
Ghs

Integrity Rtos

= 5.0.4

References & Advisories

🔗 https://github.com/bl4ckic3/GHS-Bugs
🔗 https://www.ghs.com/products/rtos/integrity.html
🔗 https://github.com/bl4ckic3/GHS-Bugs
🔗 https://www.ghs.com/products/rtos/integrity.html

相關漏洞威脅

CVE-2019-77139.8

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. There is a heap-based buffe...

CVE-2019-77149.8

An issue was discovered in Interpeak IPWEBS on Green Hills INTEGRITY RTOS 5.0.4. It allocates 60 bytes for the HTTP Authentication...

CVE-2019-77127.5

An issue was discovered in handler_ipcom_shell_pwd in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. ...

CVE-2019-77157.5

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. The main shell handler func...