FontParser in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:46
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html - Mailing List, Vendor Advisory | |
References | () http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html - Mailing List, Vendor Advisory | |
References | () http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html - Mailing List, Vendor Advisory | |
References | () http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html - Mailing List, Vendor Advisory | |
References | () http://www.securitytracker.com/id/1035353 - Third Party Advisory, VDB Entry | |
References | () http://www.zerodayinitiative.com/advisories/ZDI-16-201 - Third Party Advisory, VDB Entry | |
References | () https://support.apple.com/HT206166 - Vendor Advisory | |
References | () https://support.apple.com/HT206167 - Vendor Advisory | |
References | () https://support.apple.com/HT206168 - Vendor Advisory | |
References | () https://support.apple.com/HT206169 - Vendor Advisory |
Information
Published : 2016-03-24 01:59
Updated : 2024-11-21 02:46
NVD link : CVE-2016-1740
Mitre link : CVE-2016-1740
CVE.ORG link : CVE-2016-1740
JSON object : View
Products Affected
apple
- mac_os_x
- iphone_os
- watchos
- tvos
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer