7.5
CVSSv2

CVE-2012-3716

Published: 20/09/2012 Updated: 29/08/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 670
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

CoreText in Apple Mac OS X 10.7.x prior to 10.7.5 allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds write or read) via a crafted text glyph.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apple mac os x 10.7.4

apple mac os x 10.7.3

apple mac os x 10.7.2

apple mac os x 10.7.1

apple mac os x 10.7.0

apple mac os x server 10.7.0

apple mac os x server 10.7.1

apple mac os x server 10.7.4

apple mac os x server 10.7.2

apple mac os x server 10.7.3

Github Repositories

WiFi Arsenal Repo fully maintained by 0x90/wifi-arsenal READMEmd created by techge/wifi-arsenal Table of Contents General WiFi Information Noteworthy Tools of Different Categories Attack/PenTesting Denial of Service Encryption Attack WEP/WPA/WPA2 WPS Others Injection Rogue AP/Fake AP/ MITM Sniffing Wardriving Miscellaneous Attacking Tools Information Gathering Defence/D

WiFi Arsenal Repo fully maintained by 0x90/wifi-arsenal READMEmd created by techge/wifi-arsenal Table of Contents General WiFi Information Noteworthy Tools of Different Categories Attack/PenTesting Denial of Service Encryption Attack WEP/WPA/WPA2 WPS Others Injection Rogue AP/Fake AP/ MITM Sniffing Wardriving Miscellaneous Attacking Tools Information Gathering Defence/D

WiFi arsenal

WiFi Arsenal Repo fully maintained by 0x90/wifi-arsenal READMEmd created by techge/wifi-arsenal Table of Contents General WiFi Information Noteworthy Tools of Different Categories Attack/PenTesting Denial of Service Encryption Attack WEP/WPA/WPA2 WPS Others Injection Rogue AP/Fake AP/ MITM Sniffing Wardriving Miscellaneous Attacking Tools Information Gathering Defence/D

use the Apple CoreText exploit (CVE-2012-3716) and launch an AP to affect all devices within wifi range

killosx Use Apple CoreText exploit (CVE-2012-3716) and launch an AP to affect all vulnerable Apple devices within wifi range Installation: Run 'make install' in the killosx directory killosx can now be run from anywhere with 'killosx' Usage: killOSX Usage - killosx -i wlan0 ~ Run exploit on wlan0 killosx -h ~ This help

WiFi Arsenal Repo fully maintained by 0x90/wifi-arsenal READMEmd created by techge/wifi-arsenal Table of Contents General WiFi Information Noteworthy Tools of Different Categories Attack/PenTesting Denial of Service Encryption Attack WEP/WPA/WPA2 WPS Others Injection Rogue AP/Fake AP/ MITM Sniffing Wardriving Miscellaneous Attacking Tools Information Gathering Defence/D

WiFi Arsenal Repo fully maintained by 0x90/wifi-arsenal READMEmd created by techge/wifi-arsenal Table of Contents General WiFi Information Noteworthy Tools of Different Categories Attack/PenTesting Denial of Service Encryption Attack WEP/WPA/WPA2 WPS Others Injection Rogue AP/Fake AP/ MITM Sniffing Wardriving Miscellaneous Attacking Tools Information Gathering Defence/D

WiFi Arsenal Repo fully maintained by 0x90/wifi-arsenal READMEmd created by techge/wifi-arsenal Table of Contents General WiFi Information Noteworthy Tools of Different Categories Attack/PenTesting Denial of Service Encryption Attack WEP/WPA/WPA2 WPS Others Injection Rogue AP/Fake AP/ MITM Sniffing Wardriving Miscellaneous Attacking Tools Information Gathering Defence/D