CVE-2016-8597
NONE EPSS 80.8%
Published Oct 28, 20169y ago · Modified Jun 17, 20262w ago
Published Oct 28, 2016 9y ago
Last Modified Jun 17, 2026 2w ago
Description
Buffer overflow in the csp_sfp_recv_fp in csp_sfp.c in the libcsp library v1.4 and earlier allows hostile components with network access to the SFP underlying network layers to execute arbitrary code via specially crafted SFP packets.
Threat Intelligence
EPSS Exploit Probability
80.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| libcsp | libcsp | * | ≤1.4 |
References 2
- securityfocus.com http://www.securityfocus.com/bid/94226
- github.com https://github.com/GomSpace/libcsp/pull/80
Remediation
- github.com https://github.com/GomSpace/libcsp/pull/80