CVE-2019-7711

Publication date

2019-03-26 01:00:24

Family

mitre

State

PUBLISHED

Description

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. The undocumented shell command "prompt" sets the (user controlled) shells prompt value, which is used as a format string input to printf, resulting in an information leak of memory addresses.