Heap-based Buffer Overflow in Apple DNS Client Library

Heap-based Buffer Overflow in Apple DNS Client Library

CVE-2015-7015 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Heap-based buffer overflow in the DNS client library in configd in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code via a crafted app that sends a spoofed configd response to a client.

Learn more about our Cis Benchmark Audit For Apple Ios.