PT-2015-2865 · Apple · Watchos+2
Olivier Goguel
·
Publicado
2015-12-11
·
Atualizado
2016-12-07
·
CVE-2015-7113
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 9.2
watchOS versions prior to 2.1
Description
The issue is caused by a buffer overflow in the LaunchServices component. This can be exploited by a remote attacker to execute arbitrary code with elevated privileges or cause a denial of service through a specially crafted plist object.
Recommendations
For iOS versions prior to 9.2, update to version 9.2 or later to resolve the issue.
For watchOS versions prior to 2.1, update to version 2.1 or later to resolve the issue.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Launchservices
Ios
Watchos