CVE-2014-1252

Currently unrated

Key Information:

Vendor: Apple
Status: Pages
Vendor: CVE Published:; 24 January 2014

Summary

Double free vulnerability in Apple Pages 2.x before 2.1 and 5.x before 5.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Word file.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/90672

vdb-entryx_refsource_XF

http://www.securitytracker.com/id/1029683

vdb-entryx_refsource_SECTRACK

http://support.apple.com/kb/HT6150

x_refsource_CONFIRM

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 24, 2014
Vulnerability Reserved
Jan 8, 2014