CVE-2015-6983

Sažetak

Double free vulnerability in Apple iOS before 9.1 and OS X before 10.11.1 allows attackers to write to arbitrary files via a crafted app that accesses AtomicBufferedFile descriptors.

Reference

http://lists.apple.com/archives/security-announce/2015/Oct/msg00002.html
http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html
http://www.securityfocus.com/bid/77263
http://www.securitytracker.com/id/1033929
https://support.apple.com/HT205370
https://support.apple.com/HT205375

CVSS

Base:	8.8
Impact:	9.2
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:C/A:C

Zadnje važnije ažuriranje

24-12-2016 - 02:59

Objavljeno

23-10-2015 - 21:59