CVE-2015-5766

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 8.4.1

Description The issue allows attackers to access arbitrary filesystem locations due to a directory traversal vulnerability in the Air Traffic component. This is caused by incorrect restriction of the path name to a directory with limited access. Exploitation of the vulnerability may allow a remote attacker to access arbitrary objects in the file system.

Recommendations For versions prior to 8.4.1, update to version 8.4.1 or later to resolve the issue.