Buffer Overflow Vulnerability in Huawei Smart Phone CameraISP Driver

Buffer Overflow Vulnerability in Huawei Smart Phone CameraISP Driver

CVE-2017-8202 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

The CameraISP driver of some Huawei smart phones with software of versions earlier than Prague-AL00AC00B205,versions earlier than Prague-AL00BC00B205,versions earlier than Prague-AL00CC00B205,versions earlier than Prague-TL00AC01B205,versions earlier than Prague-TL10AC01B205 has a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP, the APP can send a specific parameter to the CameraISP driver of the smart phone, causing system reboot.

Learn more about our User Device Pen Test.