CVE-2017-9636: Buffer Overflow
First published: Tue Apr 17 2018(Updated: )
Mitsubishi E-Designer, Version 7.52 Build 344 contains five code sections which may be exploited to overwrite the heap. This can result in arbitrary code execution, compromised data integrity, denial of service, and system crash.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mitsubishi Electric E-Designer | =7.52 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-9636?
The severity of CVE-2017-9636 is critical due to its potential to allow arbitrary code execution and system crashes.
How do I fix CVE-2017-9636?
To fix CVE-2017-9636, users should update to a patched version of Mitsubishi E-Designer that addresses the heap overwrite vulnerabilities.
What versions of software are affected by CVE-2017-9636?
CVE-2017-9636 specifically affects Mitsubishi E-Designer version 7.52 Build 344.
What are the potential impacts of exploiting CVE-2017-9636?
Exploiting CVE-2017-9636 can lead to arbitrary code execution, compromised data integrity, denial of service, and system crashes.
Is there an exploit available for CVE-2017-9636?
Yes, there are known exploitation vectors for CVE-2017-9636 that can be used to achieve heap overwrites.
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/event
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/severity
- agent/description
- vendor/mitsubishielectric
- canonical/mitsubishi electric e-designer
- version/mitsubishi electric e-designer/7.52