VMAC for Verix
Buffer Overflow
CVE ID
Vendor
Verifone, Inc.
Product
Verix Multi-app Conductor
Product Version
Ver. 2.7
Vulnerability Details
The Verix Multi-app Conductor application for Verix suffers from a buffer overflow vulnerability that allows attackers to execute arbitrary code via a long configuration key value. An attacker must be able to download files to the device in order to exploit this vulnerability.