MitreCVELIST:CVE-2017-5209

HistoryJan 11, 2017 - 4:00 p.m.

CVE-2017-5209

2017-01-1116:00:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.8%

JSON

The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via split encoded Apple Property List data.

References

www.securityfocus.com/bid/95385

github.com/libimobiledevice/libplist/commit/3a55ddd3c4c11ce75a86afbefd085d8d397ff957

lists.debian.org/debian-lts-announce/2020/04/msg00002.html