CVE-2017-6952

EPSS 0.35% · P57 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-6952

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Integer overflow in the cs_winkernel_malloc function in winkernel_mm.c in Capstone 3.0.4 and earlier allows attackers to cause a denial of service (heap-based buffer overflow in a kernel driver) or possibly have unspecified other impact via a large value.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Capstone 数字错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Capstone是美国Capstone公司的一套跨平台的反汇编框架，它可支持用于二进制分析和安全通讯反向工程等。 Capstone 3.0.4及之前的版本中的winkernel_mm.c文件的‘cs_winkernel_malloc’函数存在整数溢出漏洞。攻击者可借助较大值利用该漏洞造成拒绝服务（内核服务器驱动程序基于堆的缓冲区溢出）。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2017-6952

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-6952

请登录查看更多情报信息。

https://github.com/aquynh/capstone/commit/6fe86eef621b9849f51a5e1e5d73258a93440403x_refsource_CONFIRM
http://www.securityfocus.com/bid/97323vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2017-6952

Same Patch Batch · n/a · 2017-03-16 · 16 CVEs total

CVE-2017-6023		多款Fatek Automation PLC产品缓冲区错误漏洞
CVE-2017-6061		SAP BusinessObjects Financial Consolidation help组件跨站脚本漏洞
CVE-2016-10246		Artifex Software MuPDF 缓冲区错误漏洞
CVE-2016-10247		Artifex Software MuPDF 缓冲区错误漏洞
CVE-2017-6510		EFS Software Easy File Sharing FTP Server 路径遍历漏洞
CVE-2015-8981		PoDoFo 缓冲区错误漏洞
CVE-2016-0770		WordPress Connections Business Directory插件跨站脚本漏洞
CVE-2016-10187		Calibre 信息泄露漏洞
CVE-2017-5505		JasPer 缓冲区错误漏洞
CVE-2017-5617		SVG Salamander 安全漏洞
CVE-2017-5667		QEMU 安全漏洞
CVE-2017-5856		QEMU 安全漏洞
CVE-2017-5857		QEMU 安全漏洞
CVE-2017-6949		CHICKEN Scheme 安全漏洞
CVE-2017-6951		Linux kernel 安全漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2017-6952

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-6952

I. Basic Information for CVE-2017-6952

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-6952

III. Intelligence Information for CVE-2017-6952

Same Patch Batch · n/a · 2017-03-16 · 16 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2017-6952

Leave a comment