An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed.
[
{
"product": "Micro Focus VisiBroker",
"vendor": "Micro Focus",
"versions": [
{
"status": "affected",
"version": "VisiBroker 8.5 prior to SP4 HF3"
}
]
}
]