Remote Code Execution Vulnerability in Apple iOS and OS X
CVE-2016-4631
8.8HIGH
Key Information:
Badges
👾 Exploit Exists🟡 Public PoC
What is CVE-2016-4631?
A vulnerability exists in ImageIO of Apple iOS, OS X, tvOS, and watchOS that can be exploited by crafting malicious TIFF files. This flaw allows remote attackers to execute arbitrary code or potentially lead to denial of service through memory corruption. Users running affected versions of these Apple products are urged to apply the latest updates to mitigate this risk.
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.