Libplist
CVE-2017-5209
CRITICAL
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Lifecycle Timeline
1DescriptionCVE.org
The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via split encoded Apple Property List data.
AnalysisAI
The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read). Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.
Technical ContextAI
This vulnerability is classified as Out-of-bounds Read (CWE-125), which allows attackers to read data from memory outside the intended buffer boundaries. The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via split encoded Apple Property List data. Affected products include: Libimobiledevice Libplist. Version information: through 1.12.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Validate array indices and buffer lengths. Use memory-safe languages. Enable AddressSanitizer during testing.
Heap-based buffer overflow in the parse_unicode_node function in bplist.c in libimobiledevice libplist 1.12 allows local
The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive informat
The parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of ser
The parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of ser
The base64encode function in base64.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service
The parse_data_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of servi
Heap-based buffer overflow in the parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local
libplist allows attackers to cause a denial of service (large memory allocation and crash) via vectors involving an offs
The plist_free_data function in plist.c in libplist allows attackers to cause a denial of service (crash) via vectors in
The parse_dict_node function in bplist.c in libplist allows attackers to cause a denial of service (out-of-bounds heap r
Integer overflow in the plist_from_bin function in bplist.c in libimobiledevice/libplist before 2017-04-19 allows remote
Same weakness CWE-125 – Out-of-bounds Read
View allSame technique Denial Of Service
View allShare
External POC / Exploit Code
Leaving vuln.today