RSS   Vulnerabilities for 'Libimobiledevice'   RSS

2016-06-13
 
CVE-2016-5104

CWE-284
 

 
The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate with services on iOS devices by connecting to an IPv4 TCP socket.

 
2014-01-19
 
CVE-2013-2142

CWE-59
 

 
userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local users to overwrite arbitrary files via a symlink attack on (1) HostCertificate.pem, (2) HostPrivateKey.pem, (3) libimobiledevicerc, (4) RootCertificate.pem, or (5) RootPrivateKey.pem in /tmp/root/.config/libimobiledevice/.

 

 >>> Vendor: Libimobiledevice 4 Products
Libimobiledevice
Libusbmuxd
Libplist
Idevicerestore


Copyright 2024, cxsecurity.com

 

Back to Top