Published: 10/04/2015 Updated: 08/03/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

libnetcore in Apple iOS prior to 8.3, Apple OS X prior to 10.10.3, and Apple TV prior to 7.2 allows malicious users to cause a denial of service (memory corruption and application crash) via a crafted configuration profile.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple tvos
apple mac os x
apple iphone os

Wi-Fi hotspots can put iPhones into ETERNAL super slow-mo

The Register • Darren Pauli • 10 Apr 2015

'Phantom' hack sends your iThings into a tailspin of torpor

A vulnerability fixed in this week's Apple patch run can easily brick iPhones, researchers say. The flaw (CVE-2015-1118) dubbed "Phantom" allows attackers who can trick users into changing their iDevice proxy settings to tap into multiple use-after-free vulnerabilities. Doing so causes constant ubiquitous app crashing including the system platform. Rebooting sends affected devices into a "coma" state. FireEye bods Zhaofeng Chen; Hui Xue; Tao Wei, and Yulong Zhang, say attackers could set up larg...

CVE-2015-1118

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect