Denial of Service Vulnerability in Apple Products via Mishandling of Crafted Strings in libc Component

Denial of Service Vulnerability in Apple Products via Mishandling of Crafted Strings in libc Component

CVE-2017-7086 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "libc" component. It allows remote attackers to cause a denial of service (resource consumption) via a crafted string that is mishandled by the glob function.

Learn more about our Cis Benchmark Audit For Apple Ios.