CVE-2017-5209 in libplistinfo

Summary

The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via split encoded Apple Property List data.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

01/09/2017

Disclosure

01/11/2017

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
95188libimobiledevice libplist base64.c base64decode memory corruption119Not definedOfficial fixCVE-2017-5209

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!