![]() ![]() The FaceTime flaw, CVE-2018-4366, could allow an attacker to use FaceTime to leak memory. The security bulletin description of the bug is scant and only states “a remote attacker may be able to leak memory” because of a memory corruption issue impacting input validation. According to Apple, a memory corruption bug in affected devices allows a “remote attacker may be able to initiate a FaceTime call causing arbitrary code execution.”Īccording to Apple’s security notes, Tuesday’s patch address the FaceTime bug in iPhone 5s and later, iPad Air and later, and iPod touch 6th generation.Ī second FaceTime bug ( CVE-2018-4366) was also discovered by Silvanovich and patched by Apple. Most notable of the vulnerabilities fixed by Apple was the FaceTime vulnerability, CVE-2018-4367, found by Google Project Zero researcher Natalie Silvanovich. The wide-ranging security fixes came on the same day Apple announced a new laptop and Mac Mini, and a new iPad Pro. ![]() Apple tackled a bevy of vulnerabilities across all its platforms Tuesday, including one that allowed a remote attacker to initiate a FaceTime call by exploiting a bug in some model iPhones, iPads, and iPad Air devices. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |