Apple iOS < 8.1.4 Multiple Vulnerabilities

high Nessus Network Monitor Plugin ID 8673
New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Synopsis

The remote host is missing a critical Apple iOS patch update.

Description

According to its banner, the remote Apple iOS device is missing a security update. It is, therefore, affected by the following vulnerabilities :

- There is a flaw in the way that the IOSurface component handles "type confusion" which would allow a remote attacker to execute arbitrary code as a privileged user. (CVE-2015-1061)
- There is a flaw in iCloud Keychain which would allow a man-in-the-middle attacker to execute arbitrary code. (CVE-2015-1065)
- The Springboard component allows a physical attacker to bypass controls and access the home screen. (CVE-2015-1064)
- The MobileStorageMounter component allows attackers to create arbitrary filesystem locations. (CVE-2015-1062)
- The CoreTelephony component allows remote attackers to cause a denial of service. (CVE-2015-1063)
- The Secure Transport component allows remote attackers to downgrade the encryption cipher. (CVE-2015-1067)

Solution

Upgrade to Apple iOS 8.1.4 or later.

See Also

http://support.apple.com/HT204243

Plugin Details

Severity: High

ID: 8673

Published: 4/5/2015

Updated: 3/6/2019

Dependencies: 8637

Nessus ID: 81746

Risk Information

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 8.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

CVSS v3

Risk Factor: High

Base Score: 8.1

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:X/RL:O/RC:C

Vulnerability Information

CPE: cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Patch Publication Date: 3/12/2015

Vulnerability Publication Date: 3/12/2015

Reference Information

CVE: CVE-2015-1064, CVE-2015-1062, CVE-2015-1061, CVE-2015-1065, CVE-2015-1063, CVE-2015-1067

BID: 73002, 73003, 73004, 73007, 73006, 73009