CVE-2016-4657

WebKit in Apple iOS before 9.3.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
References
Configurations

Configuration 1 (hide)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

History

02 Jul 2024, 12:22

Type Values Removed Values Added
CWE CWE-119 CWE-787
References () http://www.securityfocus.com/bid/92653 - () http://www.securityfocus.com/bid/92653 - Broken Link, Third Party Advisory, VDB Entry
References () http://www.securitytracker.com/id/1036694 - () http://www.securitytracker.com/id/1036694 - Broken Link, Third Party Advisory, VDB Entry
References () https://blog.lookout.com/blog/2016/08/25/trident-pegasus/ - () https://blog.lookout.com/blog/2016/08/25/trident-pegasus/ - Broken Link
References () https://www.exploit-db.com/exploits/44836/ - () https://www.exploit-db.com/exploits/44836/ - Exploit, Third Party Advisory, VDB Entry
References () https://www.youtube.com/watch?v=xkdPjbaLngE - () https://www.youtube.com/watch?v=xkdPjbaLngE - Exploit

Information

Published : 2016-08-25 21:59

Updated : 2024-07-02 12:22


NVD link : CVE-2016-4657

Mitre link : CVE-2016-4657

CVE.ORG link : CVE-2016-4657


JSON object : View

Products Affected

apple

  • iphone_os
CWE
CWE-787

Out-of-bounds Write