Release date:
Updated on:
Affected Systems:
Apple Pages 5.x
Apple Pages 2.x
Description:
--------------------------------------------------------------------------------
Bugtraq id: 65113
CVE (CAN) ID: CVE-2014-1252
Pages is a text processing and page layout software.
A dual release vulnerability exists in versions earlier than Apple 2.1 and 5.1. Remote attackers can exploit this vulnerability to execute arbitrary code or cause a denial of service through specially crafted Word files.
<* Source: Apple
Felix Groebert
Link: http://support.apple.com/kb/HT6117
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Apple
-----
Apple has released a Security Bulletin (HT6117) and corresponding patches for this:
HT6117: About the security content of Pages 5.1 and Pages 2.1
Link: http://support.apple.com/kb/HT6117