ID
VAR-201706-1148
TITLE
Huawei Y6 Pro graphics Driver Buffer Overflow Vulnerability
Trust: 0.6
sources:
CNVD: CNVD-2017-11752
DESCRIPTION
HuaweiY6Pro is a smartphone from China's Huawei company. A buffer overflow vulnerability exists in the Huawei Y6Pro mobile phone graphics driver using the MTK platform. Due to insufficient input verification, the attacker lured the user to install a malicious application that obtained the system privileges of the Android system. The application can use the vulnerability to send specific parameters to the mobile phone driver, resulting in system restart or privilege escalation.
Trust: 0.6
sources:
CNVD: CNVD-2017-11752
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2017-11752
AFFECTED PRODUCTS
| vendor: | huawei | model: | y6 pro <=tit-l01c576b119 | scope: | - | version: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2017-11752
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
CNVD: CNVD-2017-11752
PATCH
| title: | HuaweiY6Prographics Driver Buffer Overflow Vulnerability Patch | url: | https://www.cnvd.org.cn/patchinfo/show/96641 | Trust: 0.6 |
sources:
CNVD: CNVD-2017-11752
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2017-11752 | Trust: 0.6 |
sources:
CNVD: CNVD-2017-11752
REFERENCES
| url: | http://www.huawei.com/cn/psirt/security-advisories/2017/huawei-sa-20170527-01-smartphone-cn | Trust: 0.6 |
sources:
CNVD: CNVD-2017-11752
SOURCES
| db: | CNVD | id: | CNVD-2017-11752 |
LAST UPDATE DATE
2022-05-04T10:16:12.704000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2017-11752 | date: | 2017-06-28T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2017-11752 | date: | 2017-06-28T00:00:00 |