100010111100111111010101010101110110101010101110101010101011
00010111010101101011101100011011001010111101111011110101010101011
1011000110011000100100001111001100011010101010101010101110101010101011
010101101010101010101110100100100111100111001010101010010101110101010101011
101110000011111110010101010101011101100010000101010000010101101010101110101010101011
100010011111111001010101010101010101010101011010101010111001110101010101011
10101011001011010101010010100001010111101100011111011011110101010101011
1100011000110001111111000010101010101010101010101011110101010101011
1001101010110101010101010101101010111010100101110101010101011
close
public key:  key file
close
  • 1. Apple Mobile Safari isindex Use-After-Free Remote Code Execution Vulnerability
    The specific flaw exists within the handling of isindex elements. The issue lies in setting attributes to invalid values. By manipulating a document's elements an attacker can force a dangling pointer to be reused after it has been freed. An attacker can leverage this vulnerability to execute code under the context of the current process.
    CVE-2014-1290
  • 2. Apple Mac OS X Archive Utility Heap Memory Corruption Remote Code Execution Vulnerability.
    A memory corruption issue exists in within the copyfile library. The vulnerability can be triggered by supplying the Archive Utility with a malformed AppleDouble file.
    CVE-2014-1370
  • 3. Apple iOS ICC Profile curv Memory Corruption Remote Code Execution Vulnerability
    The specific flaw exists within the handling of ICC profiles. The issue lies in the parsing of 'curv' types. An attacker can leverage this vulnerability to execute code under the context of the current process.
    CVE-2015-3723
  • 4. Apple Carbon Memory Corruption Remote Code Execution Vulnerability.
    The specific flaw exists within the handling of .dfont files. Processing a maliciously crafted .dfont file may lead to arbitrary code execution. An attacker can leverage this vulnerability to execute code under the context of the current process.
    CVE-2016-1737