Apple iOS < 7 Multiple Vulnerabilities

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

Report iOS devices older than 7.

Description :

The mobile device is running a version of iOS that is older than
version 7. This version contains security-related fixes for the
following components :

- Certificate Trust Policy
- CoreGraphics
- CoreMedia
- Data Protection
- Data Security
- dyld
- File Systems
- ImageIO
- IOKit
- IOKitUser
- IOSerialFamily
- IPSec
- Kernel
- Kext Management
- libxml
- libxslt
- Passcode Lock
- Personal Hotspot
- Push Notifications
- Safari
- Sandbox
- Social
- Springboard
- Telephony
- Twitter
- WebKit

See also :

http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html
http://www.securityfocus.com/archive/1/528717/30/0/threaded

Solution :

Upgrade to iOS 7 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false