WebKit in Apple iOS before 9.3.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
References
Link | Resource |
---|---|
http://lists.apple.com/archives/security-announce/2016/Aug/msg00000.html | Mailing List Vendor Advisory |
http://www.securityfocus.com/bid/92653 | Broken Link Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1036694 | Broken Link Third Party Advisory VDB Entry |
https://blog.lookout.com/blog/2016/08/25/trident-pegasus/ | Broken Link |
https://support.apple.com/HT207107 | Vendor Advisory |
https://www.exploit-db.com/exploits/44836/ | Exploit Third Party Advisory VDB Entry |
https://www.youtube.com/watch?v=xkdPjbaLngE | Exploit |
Configurations
History
02 Jul 2024, 12:22
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-787 | |
References | () http://www.securityfocus.com/bid/92653 - Broken Link, Third Party Advisory, VDB Entry | |
References | () http://www.securitytracker.com/id/1036694 - Broken Link, Third Party Advisory, VDB Entry | |
References | () https://blog.lookout.com/blog/2016/08/25/trident-pegasus/ - Broken Link | |
References | () https://www.exploit-db.com/exploits/44836/ - Exploit, Third Party Advisory, VDB Entry | |
References | () https://www.youtube.com/watch?v=xkdPjbaLngE - Exploit |
Information
Published : 2016-08-25 21:59
Updated : 2024-07-02 12:22
NVD link : CVE-2016-4657
Mitre link : CVE-2016-4657
CVE.ORG link : CVE-2016-4657
JSON object : View
Products Affected
apple
- iphone_os
CWE
CWE-787
Out-of-bounds Write