CVE-2014-1278HIGH
Description
The ptmx_get_ioctl function in the ARM kernel in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to gain privileges or cause a denial of service (out-of-bounds memory access and device crash) via a crafted call.
References
Vulnerable Software
Configuration 1
OR
cpe:2.3:o:apple:iphone_os:7.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:7.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:7.0.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:7.0.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:7.0.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:7.0.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions up to 7.0.6 (inclusive)
Configuration 2
OR
cpe:2.3:o:apple:tvos:6.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:6.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* versions up to 6.0.2 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 8250 | Apple TV < 6.1 Multiple Vulnerabilities | Nessus Network Monitor | Internet Services | high |
| 72962 | Apple TV < 6.1 Multiple Vulnerabilities | Nessus | Misc. | high |
| 8155 | Apple iOS < 7.1 Multiple Vulnerabilities | Nessus Network Monitor | Mobile Devices | high |
| 72907 | Apple iOS < 7.1 Multiple Vulnerabilities | Nessus | Mobile Devices | high |