CVE-2015-1157 in iTunesinfo

Summary

CoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service (reboot and messaging disruption) via crafted Unicode text that is not properly handled during display truncation in the Notifications feature, as demonstrated by Arabic characters in (1) an SMS message or (2) a WhatsApp message.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

01/16/2015

Disclosure

05/27/2015

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
77877	Apple iTunes code	17	Not defined	Official fix	CVE-2015-1157
75568	Apple iOS Message Shutdown code	17	Proof-of-Concept	Workaround	CVE-2015-1157

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!