Информационная безопасность
[RU] switch to English


Многочисленные уязвимости безопасности в Apple TV
Опубликовано:24 ноября 2014 г.
Источник:
SecurityVulns ID:14105
Тип:удаленная
Уровень опасности:
5/10
Описание:Повреждения памяти, выполнение неподписанного кода, повышение привилегий.
Затронутые продукты:APPLE : Apple TV 7.0
CVE:CVE-2014-4462 (WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-4452.)
 CVE-2014-4461 (The kernel in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly validate IOSharedDataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via a crafted application.)
 CVE-2014-4455 (dyld in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly handle overlapping segments in Mach-O executable files, which allows local users to bypass intended code-signing restrictions via a crafted file.)
 CVE-2014-4452 (WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-4462.)
Оригинальный текстdocumentAPPLE, APPLE-SA-2014-11-17-3 Apple TV 7.0.2 (24.11.2014)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород