Quality Assurance and Security Engineering

Made Easy

Quickly identify vulnerabilities and bugs in native and managed code apps- A gamechanger for Quality Assurance and Security Engineers.
With this intelligent, scalable, and self-sufficient platform that only needs to be configured once, you can now automatically record fuzzed inputs and program crash data for reporting and analysis.

Memory Corruption Mach-O 1

17/10/2016 0 Comments in Advisory by admin_payatu

Vulnerability

Quick Heal Internet Security Memory Corruption Vulnerability

Vulnerability Description

We found that the Quick Heal Internet Security is vulnerable to Memory Corruption while parsing malformed Mach-O file.

CVE ID

CVE-2017-8774

Vendor

http://www.quickheal.co.in/

Products

Quick Heal Internet Security 10.1.0.316 and prior
Quick Heal Total Security 10.1.0.316 and prior
Quick Heal AntiVirus Pro 10.1.0.316 and prior

Disclosure Timeline

25 June 2016 – Reported to vendor
11 July 2016 – Patch released

Credits

Ashfaq Ansari – Project Srishti – Payatu Technologies