CVE-2015-3684

2015-07-03T01:59:00
ID CVE-2015-3684
Type cve
Reporter cve@mitre.org
Modified 2017-09-22T01:29:00

Description

The HTTPAuthentication implementation in CFNetwork in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted credentials in a URL.