CVE-2016-4631

HIGH

Apple iOS < 9.3.3, macOS < 10.11.6, tvOS < 9.2.2, watchOS < 2.2.2 - Remote Code Execution via Crafted TIFF File

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2016-4631. PoCs published by hansnielsen, l3onkers.

AI-analyzed exploit summary The repository contains a Makefile for a tweak named 'TIFFDisabler' but lacks actual exploit code or technical details about CVE-2016-4631. It appears to be a placeholder or incomplete project.

Description

ImageIO in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted TIFF file.

Exploits (2)

nomisec STUB 10 stars

by hansnielsen · poc

https://github.com/hansnielsen/tiffdisabler

View Code ZIP pw:eip

The repository contains a Makefile for a tweak named 'TIFFDisabler' but lacks actual exploit code or technical details about CVE-2016-4631. It appears to be a placeholder or incomplete project.

Classification

Stub 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: iOS (SpringBoard)

No auth needed

Prerequisites: iOS device with jailbreak · Theos toolchain

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec WORKING POC 1 stars

by l3onkers · poc

https://github.com/l3onkers/FuxiOS

View Code ZIP pw:eip

This repository contains a functional Python-based exploit for CVE-2016-4631, which targets a vulnerability in iOS's network stack. The exploit crafts malformed IP/TCP packets with specific options to trigger the vulnerability, and includes network scanning capabilities to identify potential targets.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: iOS (versions affected by CVE-2016-4631)

No auth needed

Prerequisites: Root/administrator privileges · Python 3 with scapy and python-nmap libraries · Network access to target devices

MITRE ATT&CK