Vulnerabilities > CVE-2013-0981 - Unspecified vulnerability in Apple Iphone OS and Tvos
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The IOUSBDeviceFamily driver in the USB implementation in the kernel in Apple iOS before 6.1.3 and Apple TV before 5.2.1 accesses pipe object pointers that originated in userspace, which allows local users to gain privileges via crafted code.
Vulnerable Configurations
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 58589 CVE(CAN) ID: CVE-2013-0981 Apple iOS是由苹果公司开发的手持设备操作系统。 iPhone, iPod touch, iPad上使用的Apple iOS 6.1.3之前版本,IOUSBDeviceFamily驱动程序使用了来自于用户空间的pipe对象指针,本地用户可利用此漏洞在内核中执行任意代码。 0 Apple iOS <= 6.1.3 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://support.apple.com/ |
| id | SSV:60703 |
| last seen | 2017-11-19 |
| modified | 2013-03-20 |
| published | 2013-03-20 |
| reporter | Root |
| title | Apple iPhone/iPad/iPod touch iOS 6.1.3之前版本本地任意内核代码执行漏洞(CVE-2013-0981) |