Apple iOS 7.x < 7.0.6 / 6.x < 6.1.6 Data Security Vulnerability
PVS ID: 8135 FAMILY: Mobile Devices RISK: MEDIUM NESSUS ID:72666
Description: Synopsis :\n\nThe remote host is running a version of iOS that is missing a security update related to the security of data in transit.\n\nThe remote host is an iPhone, iPod Touch, or iPad running a version of iOS that is older than version 7.0.6 or 6.1.6, which means that it is missing an update that restores missing validation steps when conducting a SSL/TLS session. This error could allow an attacker to spoof a server and modify or view sensitive information between it and the iOS device.\n\nFor your information, the observed version of iOS is %L.

Solution: Users of iOS 6.x should upgrade to 6.1.6 or later. Users of iOS 7.x should upgrade to 7.0.6 or later.

CVE-2014-1266


Copyright Tenable Network Security Inc. 2014