CVE-2017-7008

An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. The issue involves the "CoreAudio" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file.
References
Link Resource
https://support.apple.com/HT207924 Vendor Advisory
https://support.apple.com/HT207923 Vendor Advisory
https://support.apple.com/HT207922 Vendor Advisory
http://www.securitytracker.com/id/1038950 Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/99880 Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*

Information

Published : 2017-07-20 09:29

Updated : 2019-03-08 08:06


NVD link : CVE-2017-7008

Mitre link : CVE-2017-7008


JSON object : View

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Advertisement

dedicated server usa

Products Affected

apple

  • mac_os_x
  • iphone_os
  • tvos