PT-2015-1893 · Apple · Os X+2
Michal Zalewski
·
Publicado
2015-08-16
·
Atualizado
2019-03-08
·
CVE-2015-3807
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
libxml2 in Apple iOS versions prior to 8.4.1
libxml2 in Apple OS X versions prior to 10.10.5
Description
The issue allows remote attackers to obtain sensitive information from process memory or cause a denial of service due to memory corruption via a crafted XML document. This is caused by a buffer overflow in the libxml2 component.
Recommendations
For libxml2 in Apple iOS versions prior to 8.4.1, update to iOS 8.4.1 or later.
For libxml2 in Apple OS X versions prior to 10.10.5, update to OS X 10.10.5 or later.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Os X
Ios
Libxml2