SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   OS (Other)  >   Apple iOS Vendors:   Apple
Apple iOS Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service and Let Remote and Local Users Obtain Potentially Sensitive Information
SecurityTracker Alert ID:  1036344
SecurityTracker URL:  http://securitytracker.com/id/1036344
CVE Reference:   CVE-2016-1863, CVE-2016-1864, CVE-2016-1865, CVE-2016-4582, CVE-2016-4587, CVE-2016-4593, CVE-2016-4594, CVE-2016-4603, CVE-2016-4604, CVE-2016-4605, CVE-2016-4626, CVE-2016-4627, CVE-2016-4628, CVE-2016-4631, CVE-2016-4632, CVE-2016-4635, CVE-2016-4637   (Links to External Site)
Date:  Jul 19 2016
Impact:   Denial of service via local system, Denial of service via network, Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, Modification of system information, User access via local system, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 9.3.3
Description:   Multiple vulnerabilities were reported in Apple iOS. A remote user can cause arbitrary code to be executed on the target user's system. A remote or local user can cause denial of service conditions on the target system. A remote or local user can obtain potentially sensitive information. A local user can obtain elevated privileges on the target system. A remote user can spoof URLs and content.

A remote user can create a specially crafted calendar invite that, when loaded by the target user, will trigger a null pointer dereference and cause the target user's device to restart [CVE-2016-4605].

A remote user can trigger a memory corruption error in CoreGraphics to execute arbitrary code [CVE-2016-4637].

A remote user in a privileged network position can cause a relayed FaceTime call to continue transmitting audio but appear to be terminated [CVE-2016-4635].

A remote user can trigger a memory corruption error in ImageIO to execute arbitrary code [CVE-2016-4631].

A remote user can trigger a memory corruption error in ImageIO to cause denial of service conditions [CVE-2016-4632].

An application can trigger an out-of-bounds read error and read kernel memory [CVE-2016-4628].

An application can trigger a null pointer dereference and execute arbitrary code with kernel-level privileges [CVE-2016-4626, CVE-2016-4627].

An application can trigger a memory corruption error and execute arbitrary code with kernel-level privileges [CVE-2016-1863, CVE-2016-1864, CVE-2016-4582].

An application can trigger a null pointer dereference to cause denial of service conditions on the target system [CVE-2016-1865].

A remote user can create a specially crafted web site that, when loaded by the target user, will display arbitrary content with an arbitrary domain in the URL [CVE-2016-4604].

An application can exploit a flaw in sandbox profiles to issue privileged API calls and access the process list [CVE-2016-4594].

A physically local user can exploit a flaw in Siri to obtain private contact information [CVE-2016-4593].

A remote user can create a specially crafted video that, when loaded by the target user in Safari Private Browsing mode, will leak the URL of the video outside of Private Browsing mode [CVE-2016-4603],

A remote user can create a specially crafted web site that, when loaded by the target user, will disclose process memory to the remote web site [CVE-2016-4587].

Martin Vigo, Tyler Bohan of Cisco Talos, Evgeny Sidorov of Yandex, Ian Beer of Google Project Zero, Ju Zhu of Trend Micro, Shrek_wzw and Proteas of Qihoo 360 Nirvan Team, CESG, Marco Grassi (@marcograss) of KeenLab (@keen_lab), Tencent,
xisigr of Tencent's Xuanwu Lab (www.tencent.com), Stefan Esser of SektionEins, Pedro Pinheiro (facebook.com/pedro.pinheiro.1996), Brian Porter (@portex33), and Henry Feldman MD at Beth Israel Deaconess Medical Center reported these vulnerabilities.

Impact:   A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.

A remote or local user can cause denial of service conditions on the target system.

A remote or local user can obtain potentially sensitive information on the target system.

A local user can obtain elevated privileges on the target system.

A remote user can spoof a URL or content.

Solution:   The vendor has issued a fix (9.3.3).

The vendor's advisory is available at:

https://support.apple.com/en-us/HT206902

Vendor URL:  support.apple.com/en-us/HT206902 (Links to External Site)
Cause:   Access control error, Input validation error, State error

Message History:   This archive entry has one or more follow-up message(s) listed below.
Jul 19 2016 (Apple Issues Fix for Apple macOS/OS X) Apple iOS Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service and Let Remote and Local Users Obtain Potentially Sensitive Information
Apple has issued a fix for Apple macOS/OS X.
Jul 19 2016 (Apple Issues Fix for Apple Watch) Apple iOS Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service and Let Remote and Local Users Obtain Potentially Sensitive Information
Apple has issued a fix for Apple Watch.
Jul 19 2016 (Apple Issues Fix for Apple TV) Apple iOS Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service and Let Remote and Local Users Obtain Potentially Sensitive Information
Apple has issued a fix for Apple TV.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC