Apple iOS 7.x < 7.0.2 Multiple Vulnerabilities

Low

Synopsis

The remote host is running a version of iOS that is missing security updates.

Description

The remote host is an iPhone, iPod Touch, or iPad running a version of iOS that is older than version 7.0.2, which means it may be missing updates for the following vulnerabilities:

- NULL pointer dereference in the Passcode Lock component, which can result in a lockscreen bypass. (CVE-2013-5160)

- Bypass of the lock screen using the upswipe menu. (CVE-2013-5161)

Solution

Upgrade to iOS 7.0.2 or later.