CVEs-PoC/2017/CVE-2017-8205.md

### [CVE-2017-8205](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8205)
![](https://img.shields.io/static/v1?label=Product&message=Honor%209&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=Versions%20earlier%20than%20Stanford-AL10C00B175%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=integer%20overflow&color=brightgreen)

### Description

The Bastet driver of Honor 9 Huawei smart phones with software of versions earlier than Stanford-AL10C00B175 has integer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege; the APP can send a specific parameter to the driver of the smart phone, causing arbitrary code execution.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/guoygang/vul-guoygang