Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The fts3_tokenizer function in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a SQL command that triggers an API call with a crafted pointer value in the second argument.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple iOS和OS X SQLite 远程代码执行漏洞
Vulnerability Description
Apple iOS和OS X都是美国苹果(Apple)公司的操作系统。Apple iOS是为移动设备所开发;OS X是为Mac计算机所开发。SQLite是美国软件开发者D.Richard Hipp所研发的一套基于C语言的开源嵌入式关系数据库管理系统。 Apple iOS 8.4之前版本和OS X 10.10.4之前版本中使用的SQLite中的‘fts3_tokenizer’函数存在安全漏洞。远程攻击者可借助触发特制API调用(第二个参数中包含特制的指针值)的SQL命令利用该漏洞执行任意代码,或造成拒绝服务
CVSS Information
N/A
Vulnerability Type
N/A