PT-2020-19: Buffer overflow via SOCKET_TASK in the NTPT3 protocol
Ingenico
Tellium 2
Severity level
Severity level: Medium
Impact: Buffer overflow via SOCKET_TASK in the NTPT3 protocol
Access Vector: Remote
CVSS v3.1:
Base Score: 8.3
Vector: (AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L)
CVE-2018-17773
Advisory status
01.09.2018 - Vendor gets vulnerability details
01.03.2020 - Vendor releases fixed version and details
Credits
The vulnerability was detected by Dmitry Sklyarov, Alexey Stennikov, Vladimir Kononovich, Georgy Zaytsev, Maxim Kozhevnikov, Positive Research Center (Positive Technologies Company)