Vulnerabilities > Libplist Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-15 | CVE-2017-6440 | Improper Input Validation vulnerability in Libplist Project Libplist 1.12 The parse_data_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (memory allocation error) via a crafted plist file. | 1.9 |
| 2017-03-15 | CVE-2017-6439 | Out-of-bounds Write vulnerability in Libplist Project Libplist 1.12 Heap-based buffer overflow in the parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (out-of-bounds write) via a crafted plist file. | 1.9 |
| 2017-03-15 | CVE-2017-6438 | Out-of-bounds Write vulnerability in Libplist Project Libplist 1.12 Heap-based buffer overflow in the parse_unicode_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (out-of-bounds write) and possibly code execution via a crafted plist file. | 4.4 |
| 2017-03-15 | CVE-2017-6437 | Out-of-bounds Read vulnerability in Libplist Project Libplist 1.12 The base64encode function in base64.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (out-of-bounds read) via a crafted plist file. | 1.9 |
| 2017-03-15 | CVE-2017-6436 | Improper Input Validation vulnerability in Libplist Project Libplist 1.12 The parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (memory allocation error) via a crafted plist file. | 1.9 |
| 2017-03-15 | CVE-2017-6435 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libplist Project Libplist 1.12 The parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (memory corruption) via a crafted plist file. | 1.9 |