Apple · Os X · CVE-2015-1065
**Name of the Vulnerable Software and Affected Versions**
Apple iOS versions prior to 8.2
Apple OS X versions prior to 10.10.2
**Description**
The issue allows man-in-the-middle attackers to execute arbitrary code by modifying the client-server data stream during keychain recovery, due to multiple buffer overflows in iCloud Keychain.
**Recommendations**
For Apple iOS versions prior to 8.2, update to version 8.2 or later.
For Apple OS X versions prior to 10.10.2, update to version 10.10.2 or later.