CVEs-PoC/2017/CVE-2017-9282.md

### [CVE-2017-9282](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9282)
![](https://img.shields.io/static/v1?label=Product&message=Micro%20Focus%20VisiBroker&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Integer%20Overflow%20(CWE-190)%20and%20Out-of-Bounds%20Write%20(CWE-787)&color=brighgreen)

### Description

An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed.

### POC

#### Reference
- https://community.microfocus.com/microfocus/corba/visibroker_-_world_class_middleware/w/knowledge_base/29171/visibroker-8-5-service-pack-4-hotfix-3-security-fixes

#### Github
No PoCs found on GitHub currently.