PT-2015-3756 · Apple · Ios
Hui Xue
+1
·
Publicado
2015-01-30
·
Atualizado
2015-11-17
·
CVE-2014-4493
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Apple iOS versions prior to 8.1.3
Description
The issue concerns the app-installation functionality in MobileInstallation, allowing attackers to gain control of the local app container. This can be achieved by leveraging access to an enterprise distribution certificate for signing a crafted app.
Recommendations
For versions prior to 8.1.3, update to version 8.1.3 or later to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ios