A memory corruption issue was found in the preloader of the HTC U11 mobile device. This issue can be exploited by loading an arbitrary DLL file. This can lead to remote code execution. User interaction is needed. Patch ID: ALPS07168894; Issue ID: ALPS07168894. A potential information leak issue was found in the HTC U11 mobile device. This issue occurs due to the way in which HTC handles DLL loading. An attacker can create a malicious DLL file that can potentially lead to information disclosure. This issue can be exploited over a long distance (remote) connection. User interaction is needed. Patch ID: ALPS07168895; Issue ID: ALPS07168895. A type confusion issue was found in the HTC U11 mobile device. This issue can be exploited by sending the user a malicious DLL file. An attacker can create a DLL file that has a type confusion attack. This can lead to remote code execution. User interaction is needed. Patch ID: ALPS07168896; Issue ID: ALPS07168896. A use-after-free issue was found in the HTC U11 mobile device. This issue can be exploited by sending the user a malicious DLL file. An attacker can create a DLL file that has a use-after-free attack. This can lead to remote code execution. User interaction is needed. Patch ID: ALPS07168897;
Vulnerability Characterization
A memory corruption issue was found in the preloader of the HTC U11 mobile device. This issue can be exploited by loading an arbitrary DLL file. This can lead to remote code execution. User interaction is needed. Patch ID: ALPS07168894; Issue ID: ALPS07168894. A potential information leak issue was found in the HTC U11 mobile device. This issue occurs due to the way in which HTC handles DLL loading. An attacker can create a malicious DLL file that can potentially lead to information disclosure. This issue can be exploited over a long distance (remote) connection. User interaction is needed. Patch ID: ALPS07168895; Issue ID: ALPS07168895. A type confusion issue was found in the HTC U11 mobile device. This issue can be exploited by sending the user a malicious DLL file. An attacker can create a DLL file that has a type confusion attack. This can lead to remote code execution. User interaction is needed. Patch ID: ALPS07168896; Issue ID: ALPS07168896. A use-after-free issue was found in the HTC U11 mobile device. This issue can be exploited by sending the user a malicious DLL file, but only over a long distance (remote) connection and not over a local one like any other vulnerability would need to be done to exploit this vulnerability properly, as it is not possible to do so
Timeline
Published on: 09/06/2022 18:15:00 UTC
Last modified on: 09/09/2022 02:23:00 UTC