CVE-2014-1266

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The SSLVerifySignedServerKeyExchange function in libsecurity_ssl/lib/sslKeyExchange.c in the Secure Transport feature in the Data Security component in Apple iOS 6.x before 6.1.6 and 7.x before 7.0.6, Apple TV 6.x before 6.0.2, and Apple OS X 10.9.x before 10.9.2 does not check the signature in a TLS Server Key Exchange message, which allows man-in-the-middle attackers to spoof SSL servers by (1) using an arbitrary private key for the signing step or (2) omitting the signing step.

References

http://it.slashdot.org/comments.pl?sid=4821073&cid=46310187

http://support.apple.com/kb/HT6146

http://support.apple.com/kb/HT6147

http://support.apple.com/kb/HT6148

http://support.apple.com/kb/HT6150

https://news.ycombinator.com/item?id=7281378

https://www.cs.columbia.edu/~smb/blog/2014-02/2014-02-23.html

https://www.cs.columbia.edu/~smb/blog/2014-02/2014-02-24.html

https://www.imperialviolet.org/2014/02/22/applebug.html

Details

Source: MITRE

Published: 2014-02-22

Updated: 2019-03-08

Type: CWE-20

Risk Information

CVSS v2

Base Score: 5.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Impact Score: 4.9

Exploitability Score: 8.6

Severity: MEDIUM

Tenable Plugins

View all (5 total)

IDNameProductFamilySeverity
8138Mac OS X < 10.9.2 Multiple Vulnerabilities Nessus Network MonitorWeb Clients
critical
8135Apple iOS 7.x < 7.0.6 / 6.x < 6.1.6 Information DisclosureNessus Network MonitorMobile Devices
medium
72687Mac OS X 10.9.x < 10.9.2 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
72667Apple iOS 7.x < 7.0.6 'SSLVerifySignedServerKeyExchange' Certificate Validation WeaknessNessusMobile Devices
medium
72666Apple iOS 6.x < 6.1.6 'SSLVerifySignedServerKeyExchange' Certificate Validation WeaknessNessusMobile Devices
medium