Buffer overflow

2017-11-2219:29:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

42.9%

JSON

The boot loaders in Honor 5A smart phones with software Versions earlier than CAM-TL00C01B193,Versions earlier than CAM-TL00HC00B193,Versions earlier than CAM-UL00C00B193 have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the next system reboot, causing continuous system reboot or arbitrary code execution.

CPENameOperatorVersion
honor_5a_firmwareeq< cam-tl0c1b193
honor_5a_firmwareeq< cam-tl0hc0b193
honor_5a_firmwareeq< cam-ul0c0b193
p8_lite_firmwareeq< ale-l2c635b568
p8_lite_firmwareeq< ale-l21c10b541
p8_lite_firmwareeq< ale-l21c185b568
p8_lite_firmwareeq< ale-l21c432b596
p8_lite_firmwareeq< ale-l21c464b595
p8_lite_firmwareeq< ale-l21c636b568
p8_lite_firmwareeq< ale-l23c605b535

Name	Operator	Version
honor_5a_firmware	eq	< cam-tl0c1b193
honor_5a_firmware	eq	< cam-tl0hc0b193
honor_5a_firmware	eq	< cam-ul0c0b193
p8_lite_firmware	eq	< ale-l2c635b568
p8_lite_firmware	eq	< ale-l21c10b541
p8_lite_firmware	eq	< ale-l21c185b568
p8_lite_firmware	eq	< ale-l21c432b596
p8_lite_firmware	eq	< ale-l21c464b595
p8_lite_firmware	eq	< ale-l21c636b568
p8_lite_firmware	eq	< ale-l23c605b535