SQLite fts3_tokenizer Untrusted Pointer Remote Code Execution (CVE-2019-8602; CVE-2015-7036)

A remote code execution vulnerability exists in SQlite fts3tokenizer. Successful exploitation could result in execution of arbitrary code on the affected system...

SQLite fts3_tokenizer远程代码执行漏洞

No description provided by source...

Sql injection

The fts3tokenizer function in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a SQL command that triggers an API call with a crafted pointer value in the second argument...

CVE-2015-7036

The fts3tokenizer function in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a SQL command that triggers an API call with a crafted pointer value in the second argument...

CVE-2015-7036

CVE-2015-7036: In SQLite, the fts3_tokenizer function is the root cause, with a crafted SQL command triggering an API call using a crafted pointer value, enabling remote code execution or a crash. Affected: Apple iOS before 8.4 and macOS/OS X before 10.10.4. The connected documents provide a conc...

SQLite fts3_tokenizer remote code execution vulnerability

SQLite is an embedded database. SQLite suffers from a security vulnerability in the handling of the fts3tokenizer function, which can be exploited by a remote attacker to construct special structured pointers that can be used to execute arbitrary code in the context of the current process...

SQLite fts3_tokenizer Untrusted Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SQLite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...