CVE-2015-1157
iPhone OS 8.x-8.3 - Denial of Service via Unicode Text in Notifications
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2015-1157. PoCs published by perillamint.
AI-analyzed exploit summary This PoC demonstrates a simple TCP server exploit for CVE-2015-1157, which involves a vulnerability in a specific software. The server listens on port 23 and responds with a predefined message and data from a file, potentially exploiting a vulnerability in the target software.
Description
CoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service (reboot and messaging disruption) via crafted Unicode text that is not properly handled during display truncation in the Notifications feature, as demonstrated by Arabic characters in (1) an SMS message or (2) a WhatsApp message.
Exploits (1)
This PoC demonstrates a simple TCP server exploit for CVE-2015-1157, which involves a vulnerability in a specific software. The server listens on port 23 and responds with a predefined message and data from a file, potentially exploiting a vulnerability in the target software.