CVE-2014-4420 in Apple Mac OS Xinfo

Summary

The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does not properly initialize memory, which allows attackers to obtain sensitive memory-content and memory-layout information via a crafted application, a different vulnerability than CVE-2014-4371, CVE-2014-4419, and CVE-2014-4421.

Reservation

06/20/2014

Disclosure

09/18/2014

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
68896	Apple Mac OS X uninitialized pointer	824	Not defined	Official fix	CVE-2014-4420
68017	Apple Mac OS X uninitialized resource	908	Not defined	Official fix	CVE-2014-4420
67589	Apple iOS information disclosure	200	Not defined	Official fix	CVE-2014-4420

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Do you need the next level of professionalism?

Upgrade your account now!