Lucene search
AppleCVE-2014-1252HistoryJan 24, 2014 - 3:08 p.m.
CVE-2014-1252
2014-01-2415:08:00
CWE-415
apple
web.nvd.nist.gov
631
cve-2014-1252
apple
pages
vulnerability
remote attackers
arbitrary code
denial of service
application crash
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.047
Percentile
92.7%
Double free vulnerability in Apple Pages 2.x before 2.1 and 5.x before 5.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Word file.
Affected configurations
Node
applepagesMatch2.0
ORapplepagesMatch2.0.1
ORapplepagesMatch2.0.2
ORapplepagesMatch5.0
ORapplepagesMatch5.0.1
Node
applemac_os_xRange≤10.9.1
Node
appleiphone_osRange≤7.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apple | pages | 2.0 | cpe:2.3:a:apple:pages:2.0:*:*:*:*:*:*:* |
| apple | pages | 2.0.1 | cpe:2.3:a:apple:pages:2.0.1:*:*:*:*:*:*:* |
| apple | pages | 2.0.2 | cpe:2.3:a:apple:pages:2.0.2:*:*:*:*:*:*:* |
| apple | pages | 5.0 | cpe:2.3:a:apple:pages:5.0:*:*:*:*:*:*:* |
| apple | pages | 5.0.1 | cpe:2.3:a:apple:pages:5.0.1:*:*:*:*:*:*:* |
| apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
| apple | iphone_os | * | cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2014-1252
2014-01-24 15:08:00
cvelist
cvelist
CVE-2014-1252
2014-01-24 15:00:00
prion
prion
Double free
2014-01-24 15:08:00
nessus
nessus
Apple Pages < 2.1 / 5.1 Microsoft Word Document Handling Double Free Arbitrary Code Execution
2014-02-04 00:00:00
Mac OS X Multiple Vulnerabilities (Security Update 2014-001) (BEAST)
2014-02-25 00:00:00
Mac OS X 10.9.x < 10.9.2 Multiple Vulnerabilities
2014-02-25 00:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities -06 (Sep 2014)
2014-09-22 00:00:00
securityvulns
securityvulns
APPLE-SA-2014-02-25-1 OS X Mavericks 10.9.2 and Security Update 2014-001
2014-02-28 00:00:00
Apple Mac OS X multiple security vulnerabilities
2014-02-28 00:00:00
Apple iOS multiple security vulnerabilities
2014-03-31 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.047
Percentile
92.7%
Related for CVE-2014-1252