Buffer Overread Vulnerability in ELF Header Parsing in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear

Buffer Overread Vulnerability in ELF Header Parsing in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear

CVE-2017-18294 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

While reading file class type from ELF header, a buffer overread may happen if the ELF file size is less than the size of ELF64 header size in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version FSM9055, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDA660, SDX20.

Learn more about our Mobile App Penetration Testing.