This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The remote device is affected by multiple vulnerabilities.
According to its banner, the remote Apple TV 2nd generation or later
device is missing Software Update 5.2. It is, therefore, reportedly
affected by several vulnerabilities :
- Failure to properly validate that the user-mode pointer
and length passed to the copyin and copyout functions
could allow a user-mode process to directly access
kernel memory if the length is smaller than one page.
- An out-of-bounds read error in the Broadcom BCM4325 /
BCM4329 firmware could allow a remote attacker on the
same Wi-Fi network to cause an unexpected system
termination by sending a specially crafted RSN (802.11i)
information element. (CVE-2012-2619)
See also :
Upgrade to Apple TV 5.2 or later.
Risk factor :
Medium / CVSS Base Score : 6.1
CVSS Temporal Score : 5.0
Public Exploit Available : true