What the vulnerability does

01Description

An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed.

Key dates

02Disclosure timeline

September 21, 2017 CVE published
September 17, 2024 Record updated