CVE-2017-6975
Apple Security Advisory 2019-5-13-6
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Wi-Fi in Apple iOS before 10.3.1 does not prevent CVE-2017-6956 stack buffer overflow exploitation via a crafted access point. NOTE: because an operating system could potentially isolate itself from CVE-2017-6956 exploitation without patching Broadcom firmware functions, there is a separate CVE ID for the operating-system behavior.
Wi-Fi en Apple iOS en versiones anteriores a 10.3.1 no evita la explotación de desbordamiento de búfer de pila de la CVE-2017-6956 a través de un punto de acceso manipulado. NOTA: dado que un sistema operativo podría potencialmente aislarse de la explotación de CVE-2017-6956 sin parches de funciones de firmware de Broadcom, hay un CVE ID independiente para el comportamiento del sistema operativo.
Broadcom suffers from a stack buffer overflow vulnerability when handling 802.11r (FT) authentication responses.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-03-17 CVE Reserved
- 2017-04-03 CVE Published
- 2024-08-05 CVE Updated
- 2024-08-05 First Exploit
- 2024-12-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://seclists.org/fulldisclosure/2019/May/24 | Mailing List |
|
| http://www.securityfocus.com/bid/97328 | Third Party Advisory | |
| http://www.securitytracker.com/id/1038172 | Vdb Entry | |
| https://seclists.org/bugtraq/2019/May/30 | Mailing List |
|
| https://support.apple.com/kb/HT210121 | X_refsource_confirm |
|
| https://twitter.com/4Dgifts/status/849268365457850370 | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_4.html | 2024-08-05 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.apple.com/HT207688 | 2019-05-14 |