Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2017-2370

Published: 20/02/2017 Updated: 11/03/2019
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 936
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Iphone Os

Vulnerability Summary

An issue exists in certain Apple products. iOS prior to 10.2.1 is affected. macOS prior to 10.12.3 is affected. tvOS prior to 10.1.1 is affected. watchOS prior to 3.1.3 is affected. The issue involves the "Kernel" component. It allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (buffer overflow) via a crafted app.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apple iphone os

apple mac os x

apple watchos

apple tvos

Exploits

Exploit DB: Apple macOS 10.12.1 / iOS 10.2 - Kernel Userspace Pointer Memory Corruption
Source: bugschromiumorg/p/project-zero/issues/detail?id=1004 mach_voucher_extract_attr_recipe_trap is a mach trap which can be called from any context Here's the code: kern_return_t mach_voucher_extract_attr_recipe_trap(struct mach_voucher_extract_attr_recipe_args *args) { ipc_voucher_t voucher = IV_NULL; kern_return_t kr ...

Github Repositories

https://github.com/aozhimin/MOSEC-2017

📝 The third MOSEC mobile security technology summit 第三届 MOSEC 移动安全技术峰会参会分享

首先简单介绍下背景,MOSEC 是盘古团队和 POC 主办的移动安全技术峰会,到今年已经是第三届,虽然从影响力来看,不如一些重量级的黑客大会,比如 Black Hat 和 DEFCon,但是从这三届大会的参会者的反馈来看,会议的议题的质量都不错,聚焦移动安全领域前沿性的技术议题及发展趋势,再

https://github.com/Rootkitsmm/extra_recipe-iOS-10.2

CVE-2017-2370

extra_recipe-iOS-102 CVE-2017-2370 Code & Exploit by ianbeer (bugschromiumorg/p/project-zero/issues/detail?id=1004) Fixed (supportapplecom/en-us/HT207482)

https://github.com/JackBro/extra_recipe

Ian Beer's exploit for CVE-2017-2370 (kernel memory r/w on iOS 10.2)

// ianbeer kernel arbitrary read/write exploit for CVE-2017-2370 for iOS 102 Only tested on iPod Touch 6G 14C92 - other devices/firmwares will not work out of the box! *** the bug *** mach_voucher_extract_attr_recipe_trap is a mach trap which can be called from any context It's brand new code, added in iOS 10 kern_return_t mach_voucher_extract_attr_recipe_trap(struct ma

References

CWE-119https://support.apple.com/HT207487https://support.apple.com/HT207485https://support.apple.com/HT207483https://support.apple.com/HT207482http://www.securityfocus.com/bid/95731https://bugs.chromium.org/p/project-zero/issues/detail?id=1004http://www.securitytracker.com/id/1037668https://www.exploit-db.com/exploits/41163/https://nvd.nist.govhttps://www.exploit-db.com/exploits/41163/https://github.com/aozhimin/MOSEC-2017
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook