CVE-2015-3717
published 2015-07-03CVE-2015-3717: Multiple buffer overflows in the printf functionality in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allow remote attackers to execute…
PriorityP336high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.76%
83.0th percentile
Multiple buffer overflows in the printf functionality in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | < 8.4 | 8.4 |
| apple | itunes | — | — |
| apple | itunes_12.6_for_windows | — | — |
| apple | mac_os_x | < 10.10.4 | 10.10.4 |
| apple | os_x_yosemite_v10.10.4_and_security_update_2015-005 | — | — |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| sqlite | sqlite | < 3.8.9 | 3.8.9 |
Microsoft
CVE-2015-3717: NIST NVD Details: https://nvd
vendor_msrc·2020-09-08·CVSS 7.5
CVE-2015-3717 [HIGH] CVE-2015-3717: NIST NVD Details: https://nvd
NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2015-3717
Mariner: Mariner
[email protected]: [email protected]
Exploit Status: DOS:N/A
Remediation: sqlite
Apple
CVE-2015-3717: iTunes 12.6
vendor_apple·2017-03-21·CVSS 7.5
CVE-2015-3717 [HIGH] CVE-2015-3717: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2015-3717
Component: CVE-2015-3717
Apple
CVE-2015-3717: iTunes 12.6 for Windows
vendor_apple·2017-03-21·CVSS 7.5
CVE-2015-3717 [HIGH] CVE-2015-3717: iTunes 12.6 for Windows
Apple Security Update: About the security content of iTunes 12.6 for Windows
Product: iTunes 12.6 for Windows
CVE: CVE-2015-3717
Component: CVE-2015-3717
Apple
CVE-2015-3717: iOS 8.4
vendor_apple·CVSS 7.5
CVE-2015-3717 [HIGH] CVE-2015-3717: iOS 8.4
Apple Security Update: About the security content of iOS 8.4
Product: iOS
Version: 8.4
CVE: CVE-2015-3717
Component: CVE-ID
Apple
CVE-2015-3717: OS X Yosemite v10.10.4 and Security Update 2015-005
vendor_apple·CVSS 7.5
CVE-2015-3717 [HIGH] CVE-2015-3717: OS X Yosemite v10.10.4 and Security Update 2015-005
Apple Security Update: About the security content of OS X Yosemite v10.10.4 and Security Update 2015-005
Product: OS X Yosemite v10.10.4 and Security Update 2015-005
CVE: CVE-2015-3717
Component: CVE-ID
GHSA
GHSA-32vr-rgc3-2ccm: Multiple buffer overflows in the printf functionality in SQLite, as used in Apple iOS before 8
ghsa_unreviewed·2022-05-13
CVE-2015-3717 [HIGH] CWE-120 GHSA-32vr-rgc3-2ccm: Multiple buffer overflows in the printf functionality in SQLite, as used in Apple iOS before 8
Multiple buffer overflows in the printf functionality in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlhttp://support.apple.com/kb/HT204941http://support.apple.com/kb/HT204942http://www.securityfocus.com/bid/75491http://www.securitytracker.com/id/1032760http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlhttp://support.apple.com/kb/HT204941http://support.apple.com/kb/HT204942http://www.securityfocus.com/bid/75491http://www.securitytracker.com/id/1032760
2015-07-03
Published