Integer Overflow Vulnerability in libmtp's ptp-pack.c (ptp_unpack_OPL function) Allows for Denial of Service or Remote Code Execution

Integer Overflow Vulnerability in libmtp's ptp-pack.c (ptp_unpack_OPL function) Allows for Denial of Service or Remote Code Execution

CVE-2017-9832 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

An integer overflow vulnerability in ptp-pack.c (ptp_unpack_OPL function) of libmtp (version 1.1.12 and below) allows attackers to cause a denial of service (out-of-bounds memory access) or maybe remote code execution by inserting a mobile device into a personal computer through a USB cable.

Learn more about our Cis Benchmark Audit For Ibm I.