The IOUSBDeviceFamily driver in the USB implementation in the kernel in Apple iOS before 6.1.3 and Apple TV before 5.2.1 accesses pipe object pointers that originated in userspace, which allows local users to gain privileges via crafted code.
References
Link | Resource |
---|---|
http://lists.apple.com/archives/security-announce/2013/Mar/msg00004.html | Vendor Advisory |
http://lists.apple.com/archives/security-announce/2013/Mar/msg00005.html | Vendor Advisory |
http://support.apple.com/kb/HT5702 | Vendor Advisory |
http://support.apple.com/kb/HT5704 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2013-03-20 14:55
Updated : 2024-02-28 12:00
NVD link : CVE-2013-0981
Mitre link : CVE-2013-0981
CVE.ORG link : CVE-2013-0981
JSON object : View
Products Affected
apple
- tvos
- iphone_os
CWE