Main Vulnerability Database Exploits ID:6416 - Exploit for Memory corruption in Apple iOS and Apple Safari - CVE-2016-4657

ID:6416 - Exploit for Memory corruption in Apple iOS and Apple Safari - CVE-2016-4657

Published: June 17, 2021

Vulnerability identifier: #VU4575

Vulnerability risk: Critical

CVE-ID: CVE-2016-4657

CWE-ID: CWE-119

Exploitation vector: Remote access

Vulnerable software:
Apple iOS
Apple Safari

Link to public exploit:

https://www.exploit-db.com/exploits/44213/

Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to boundary error in WebKit. A remote attacker can create a specially crafted Web site, trick the victim into visiting it, trigger memory corruption and execute arbitrary code with privileges of the current user.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Note: the vulnerability was being actively exploited.

Remediation

Update to version 9.3.5.

ID:6416 - Exploit for Memory corruption in Apple iOS and Apple Safari - CVE-2016-4657

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human