Apple TV < 5.1 Multiple Vulnerabilities

high Nessus Plugin ID 62357

Language:

Synopsis

The remote device is affected by multiple vulnerabilities.

Description

According to its banner, the remote Apple TV 2nd generation or later device has a version of iOS that is prior to 5.1. It is, therefore, reportedly affected by several vulnerabilities :

 - An uninitialized memory access issue in the handling of Sorenson encoded movie files could lead to arbitrary code execution. (CVE-2012-3722)

 - Following the DNAv4 protocol, the device may broadcast MAC addresses of previously accessed networks when connecting to a Wi-Fi network. (CVE-2012-3725)

 - A buffer overflow in libtiff's handling of ThunderScan encoded TIFF images could lead to arbitrary code execution. (CVE-2011-1167)

 - Multiple memory corruption issues in libpng's handling of PNG images could lead to arbitrary code execution.
 (CVE-2011-3026 / CVE-2011-3048 / CVE-2011-3328)

 - A double free issue in ImageIO's handling of JPEG images could lead to arbitrary code execution.
 (CVE-2012-3726)

 - An integer overflow issue in libTIFF's handling of TIFF images could lead to arbitrary code execution.
 (CVE-2012-1173)

 - A stack-based buffer overflow in the handling of ICU locale IDs could lead to arbitrary code execution.
 (CVE-2011-4599)

 - Multiple vulnerabilities in libxml could have a variety of impacts, including arbitrary code execution.
 (CVE-2011-1944 / CVE-2011-2821 / CVE-2011-2834 / CVE-2011-3919)

 - Multiple memory corruption issues in JavaScriptCore could lead to arbitrary code execution.
 (CVE-2012-0682 / CVE-2012-0683 / CVE-2012-3589 / CVE-2012-3590 / CVE-2012-3591 / CVE-2012-3592 / CVE-2012-3678 / CVE-2012-3679)

Solution

Upgrade the Apple TV to iOS 5.1 or later.

See Also

https://support.apple.com/en-us/HT202614

https://lists.apple.com/archives/security-announce/2012/Sep/msg00006.html

https://www.securityfocus.com/archive/1/524229/30/0/threaded

Plugin Details

Severity: High

ID: 62357

File Name: appletv_5_1.nasl

Version: 1.18

Type: remote

Published: 9/27/2012

Updated: 11/15/2018

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 7.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: E:POC/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:apple:apple_tv

Required KB Items: www/appletv

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/24/2012

Vulnerability Publication Date: 3/21/2011

Reference Information

CVE: CVE-2011-1167, CVE-2011-1944, CVE-2011-2821, CVE-2011-2834, CVE-2011-3026, CVE-2011-3048, CVE-2011-3328, CVE-2011-3919, CVE-2011-4599, CVE-2012-0682, CVE-2012-0683, CVE-2012-1173, CVE-2012-3589, CVE-2012-3590, CVE-2012-3591, CVE-2012-3592, CVE-2012-3678, CVE-2012-3679, CVE-2012-3722, CVE-2012-3725, CVE-2012-3726

BID: 46951, 48056, 49279, 49658, 49744, 51006, 51300, 52049, 52830, 52891, 54680, 56264, 56268, 56273

APPLE-SA: APPLE-SA-2012-09-24-1