CVE-2014-1252

CVE Database · CVE-2014-1252

CVE-2014-1252

· N/AModified

CVSS v3.1

N/A

EPSS

4.17%

Published

Jan 24, 2014

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Double free vulnerability in Apple Pages 2.x before 2.1 and 5.x before 5.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Word file.

Weaknesses (CWE)

CWE-415

Affected Products (7)

apple · pagesvulnerable

apple · mac_os_xvulnerable

apple · iphone_osvulnerable

References (18)

http://osvdb.org/102460

Broken Link

http://secunia.com/advisories/56615

Permissions Required

http://secunia.com/advisories/56630

Permissions Required

http://support.apple.com/kb/HT6117

Vendor Advisory

http://support.apple.com/kb/HT6150

Vendor Advisory

http://support.apple.com/kb/HT6162

Vendor Advisory

http://www.securityfocus.com/bid/65113

Third Party AdvisoryVDB Entry

KEV Catalog EPSS Scores Vendors All CVEs