But
arbitrary code vulnerabilities like Stagefright can, for example, turn on a phone's microphone to use it as a spy device, even if the phone has no access to anything more sensitive than a public Twitter account.
Not exact matches
The
vulnerability may corrupt memory in a way that could allow an attacker to execute
arbitrary code in the context of the current user within Internet Explorer.
WebKit's
vulnerabilities included a malicious website able to open pop - ups and some with
arbitrary code executions, with nine of the 11 reported by Google's Project Zero that looks for zero - day
vulnerabilities.
Apple's advisory warns that the audio
vulnerabilities could have enabled
arbitrary code execution if a user attempted to process a maliciously crafted audio file.
Vulnerabilities range from high to critical, with the most severe relating to the media framework and possibly permitting a remote attacker to execute
arbitrary code through a «crafted file.»
«The most severe of these issues is a critical security
vulnerability in Media framework that could enable a remote attacker using a specially crafted file to execute
arbitrary code within the context of a privileged process.
«The most severe of these issues is a critical security
vulnerability in Media framework that could enable a remote attacker using a specially crafted file to execute
arbitrary code within the context of a privileged process,» said Google.
Google notes, «the most severe of the issues is a critical security
vulnerability in the Media framework that could enable a remote attacker using a specially crafted file to execute
arbitrary code...»
techrepublic.com - The input sanitation
vulnerability, an oversight that allows for
arbitrary code execution, was patched on Wednesday by Drupal developers.
securityaffairs.co - Security experts have discovered a
vulnerability in the Spring Framework that could be exploited by a remote attacker to execute
arbitrary code on applications built with it.
techrepublic.com - Microsoft warned that the
vulnerability could allow attackers to execute
arbitrary code and take control of a system.
bleepingcomputer.com - Google has gone public with details about a Microsoft Edge
vulnerability that attackers could abuse and bypass one of the browser's security features —
Arbitrary Code Guard (ACG).