Integer overflow in the plist_from_bin function in bplist.c in libimobiledevice/libplist prior to 2017-04-19 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted plist file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libimobiledevice libplist |