Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.9
CVSSv2

CVE-2014-8611

Published: 18/09/2015 Updated: 06/04/2016
CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4
VMScore: 614
Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Apple

Vulnerability Summary

The __sflush function in fflush.c in stdio in libc in FreeBSD 10.1 and the kernel in Apple iOS prior to 9 mishandles failures of the write system call, which allows context-dependent malicious users to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via a crafted application.

Vulnerable Product Search on Vulmon Subscribe to Product

apple iphone os

freebsd freebsd 10.1

apple mac os x

References

CWE-119https://www.freebsd.org/security/advisories/FreeBSD-SA-14:27.stdio.aschttps://svnweb.freebsd.org/base?view=revision&revision=275665http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.htmlhttps://support.apple.com/HT205212https://support.apple.com/HT205267http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validationCVE-2024-34413CVE-2024-34089CVE-2024-33408localSQLCVE-2024-0402CVE-2024-33910CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook