Vulnerability CVE-2017-11498

Vulnerability CVE-2017-11498

Published: 2017-10-02 Modified: 2017-10-03

Description:

Type:

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS Base Score	Impact Subscore	Exploitability Subscore
5/10	2.9/10	10/10

Affected software
Gemalto -> Sentinel ldk rte

http://www.securityfocus.com/bid/102739

http://www.securityfocus.com/bid/102906

https://cert-portal.siemens.com/productcert/pdf/ssa-727467.pdf

https://ics-cert.kaspersky.com/advisories/2017/07/28/klcert-17-001-sentinel-ldk-rte-language-pack-with-invalid-html-files-leads-to-denial-of-service/

https://ics-cert.us-cert.gov/advisories/ICSA-18-018-01

https://ics-cert.us-cert.gov/advisories/ICSA-18-093-01

https://www.iotvillage.org/slides_dc25/Sergey_Vlad_DEFCON_IOT_Village_Public2017.pptx