CVE-2012-0065

Name of the Vulnerable Software and Affected Versions usbmuxd versions 1.0.5 through 1.0.7

Description A heap-based buffer overflow issue exists in the receive packet function in libusbmuxd/libusbmuxd.c. This allows physically proximate attackers to execute arbitrary code via a long SerialNumber field in a property list.

Recommendations For usbmuxd versions 1.0.5 through 1.0.7, consider updating to a version that contains a fix for this issue, as the current version is affected by the heap-based buffer overflow in the receive packet function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.