Lucene search
K

160 matches found

Cvelist
Cvelist
added 2017/03/15 2:0 p.m.28 views

CVE-2017-6435

The parsestringnode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service memory corruption via a crafted plist file...

6.2AI score0.00527EPSS
Exploits1References4
CVE
CVE
added 2017/03/15 2:0 p.m.80 views

CVE-2017-6436

CVE-2017-6436 affects libplist (libimobiledevice/libplist 1.12). The vulnerability resides in the parse_string_node function in bplist.c and can be triggered by a crafted plist file to cause a denial of service via a memory allocation error, via local access. Impact is DoS on affected systems; ex...

5CVSS6AI score0.00507EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVE
added 2017/03/15 2:0 p.m.39 views

CVE-2017-6435

The parsestringnode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service memory corruption via a crafted plist file...

5CVSS6.5AI score0.00527EPSS
Exploits1
Debian CVE
Debian CVE
added 2017/03/15 2:0 p.m.36 views

CVE-2017-6436

The parsestringnode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service memory allocation error via a crafted plist file...

5CVSS6.5AI score0.00507EPSS
Exploits1
CVE
CVE
added 2017/03/15 2:0 p.m.73 views

CVE-2017-6438

CVE-2017-6438 affects libplist (libimobiledevice/libplist) 1.12, via a heap-based buffer overflow in parse_unicode_node() in bplist.c that can cause a denial of service and potentially code execution with a crafted plist. A patch/update is available from upstream/maintainers (refs in Red Hat Mage...

7.3CVSS7.9AI score0.0065EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2017/03/15 2:0 p.m.19 views

CVE-2017-6438

Heap-based buffer overflow in the parseunicodenode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service out-of-bounds write and possibly code execution via a crafted plist file...

8AI score0.0065EPSS
Exploits1References2
Cvelist
Cvelist
added 2017/03/15 2:0 p.m.24 views

CVE-2017-6437

The base64encode function in base64.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service out-of-bounds read via a crafted plist file...

6.2AI score0.00426EPSS
Exploits1References2
CVE
CVE
added 2017/03/15 2:0 p.m.79 views

CVE-2017-6435

CVE-2017-6435 affects libimobiledevice libplist 1.12. The parse_string_node function in bplist.c is reported to allow local users to cause a denial of service through a crafted plist file, resulting in memory corruption. The vulnerability is locally exploitable; the description does not specify e...

5CVSS6AI score0.00527EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2017/03/15 2:0 p.m.21 views

CVE-2017-6439

Heap-based buffer overflow in the parsestringnode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service out-of-bounds write via a crafted plist file...

6.5AI score0.00532EPSS
Exploits1References4
CVE
CVE
added 2017/03/15 2:0 p.m.76 views

CVE-2017-6439

CVE-2017-6439 is a heap-based buffer overflow in the parse_string_node function of libimobiledevice/libplist 1.12. It allows local users to cause a denial of service via a crafted plist file (out-of-bounds write). Affected software: libimobiledevice/libplist (version 1.12). Connected sources conf...

5CVSS6.3AI score0.00532EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2017/03/15 2:0 p.m.20 views

CVE-2017-6440

The parsedatanode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service memory allocation error via a crafted plist file...

6.2AI score0.00422EPSS
Exploits1References2
CNVD
CNVD
added 2017/02/07 12:0 a.m.25 views

libimobiledevice libplist Heap Buffer Overflow Vulnerability

libimobiledevice is a software protocol library and tool that allows Linux to support connectivity to iOS devices such as the iPhone, iPodTouch, etc. libplist is one of the libraries that handles the Apple Property List format in binary or XML format. A heap buffer overflow vulnerability exists i...

7.5CVSS7.6AI score0.02926EPSS
Exploits0References1
CNVD
CNVD
added 2017/02/07 12:0 a.m.40 views

libimobiledevice libplist heap buffer overflow vulnerability (CNVD-2017-01279)

libimobiledevice is a software protocol library and tool that allows Linux to support connectivity to iOS devices such as the iPhone, iPodTouch, etc. libplist is one of the libraries that handles the Apple Property List format in binary or XML format. A stack buffer overflow vulnerability exists ...

5.5CVSS7.6AI score0.01297EPSS
Exploits0References1
CNVD
CNVD
added 2017/02/07 12:0 a.m.50 views

libimobiledevice libplist Denial of Service Vulnerability

libimobiledevice is a software protocol library and tool that allows Linux to support connectivity to iOS devices such as the iPhone, iPodTouch, etc. libplist is one of the libraries that handles the ApplePropertyList format in either binary or XML format. A denial of service vulnerability exists...

7.5CVSS6.8AI score0.02657EPSS
Exploits0References1
Veracode
Veracode
added 2017/01/27 7:3 a.m.20 views

Exposure Of IOS Device To Attacker

libimobiledevice and libusbmuxd are vulnerable to exposure of iOS decive to attacker on the local network. The attack is possible because of a flaw in the socketcreate function in common/socket.c in libimobiledevice and libusbmuxd, leading to the bypass of intended access restrictions. Therefore,...

5.3CVSS5AI score0.02994EPSS
Exploits0References3Affected Software2
ArchLinux
ArchLinux
added 2017/01/27 12:0 a.m.25 views

[ASA-201701-34] libimobiledevice: access restriction bypass

Arch Linux Security Advisory ASA-201701-34 ========================================== Severity: Medium Date : 2017-01-27 CVE-ID : CVE-2016-5104 Package : libimobiledevice Type : access restriction bypass Remote : Yes Link : https://security.archlinux.org/AVG-8 Summary ======= The package...

5.3CVSS2AI score0.02994EPSS
Exploits0References3
CNVD
CNVD
added 2017/01/25 12:0 a.m.34 views

Libimobiledevice Libplist 'plistutil.c' stack buffer overflow vulnerability

libimobiledevice is a software protocol library and tool that allows Linux to support connectivity to iOS devices such as the iPhone, iPodTouch, etc. libplist is one of the libraries that handles the ApplePropertyList format in either binary or XML format. A stack buffer overflow vulnerability...

9.1CVSS9AI score0.03799EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/01/24 11:17 a.m.30 views

CVE-2017-5545

The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via Apple Property List data that is too short...

9.1CVSS5.3AI score0.03799EPSS
Exploits0References1
Prion
Prion
added 2017/01/21 1:59 a.m.11 views

Design/Logic Flaw

The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via Apple Property List data that is too short...

6.4CVSS8.3AI score0.03799EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2017/01/21 1:59 a.m.12 views

CVE-2017-5545

The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via Apple Property List data that is too short...

9.1CVSS8.4AI score0.03799EPSS
Exploits0References4
Rows per page
Query Builder