PT-2017-1337 · Apple · Ios+1

Ianbeer

Published

2017-02-20

Updated

2017-09-03

CVE-2016-7661

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions iOS versions prior to 10.2 macOS versions prior to 10.12.2

Description The issue involves the Power Management component and is related to insufficient access control. It allows local users to gain privileges via vectors related to Mach port name references.

Recommendations For iOS versions prior to 10.2, update to version 10.2 or later. For macOS versions prior to 10.12.2, update to version 10.12.2 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2017-00462

CVE-2016-7661

Affected Products

Ios

Apple Macos

PT-2017-1337 · Apple · Ios+1

CVE-2016-7661

Weakness Enumeration

Related Identifiers

Affected Products

References · 9