Multiple vulnerabilities in earlier versions of Apple iOS 8 and earlier versions of TV 7

Multiple vulnerabilities in earlier versions of Apple iOS 8 and earlier versions of TV 7

Release date:
Updated on:

Affected Systems:
Apple TV <7
Apple iOS <8
Description:
Bugtraq id: 69882
CVE (CAN) ID: CVE-2014-4378, CVE-2014-4374, CVE-2014-4361, CVE-2014-4353, CVE-2014-4369, CVE-2014-4373, CVE-2014-4379, CVE-2014-4404, CVE-2014-4405, CVE-2014-4380, CVE-2014-4407, CVE-2014-4418, CVE-2014-4388, CVE-2014-4364, CVE-2014-4423, CVE-2014-4352, CVE-2014-4386, CVE-2014-4384, CVE-2014-4383, CVE-2014-4354, CVE-2014-4377, CVE-2014-4389, CVE-2014-4371, CVE-2014-4419, CVE-2014-4420, CVE-2014-4421, CVE-2014-4375, CVE-2014-4408, CVE-2014-4422, CVE-2014-4381, CVE-2014-4366, CVE-2014-4367, CVE-2014-4363, CVE-2014-4362, CVE-2014-4372, CVE-2014-4409

IOS is an operating system developed by Apple for mobile devices. It supports iPhone, iPod touch, iPad, and Apple TV. Apple TV is a digital multi-media machine designed, marketed, and sold by Apple.

Apple iOS and TV have multiple security vulnerabilities that affect the following components: 802.1X, Accounts, Accessibility, Accounts Framework, Address Book, App Installation, Assets, Bluetooth, CoreGraphics, foundation, Home & amp; Lock Screen, iMessage, IOAcceleratorFamily, IOAcceleratorFamily, IOHIDFamily, IOHIDFamily, IOKit, Kernel, Libnotify, Mail, Profiles, Safari, Sandbox Profiles, syslog, webKit components. Successful exploitation of these vulnerabilities can cause the affected device to crash, bypass security restrictions, obtain sensitive information or execute arbitrary code.

<* Source: Pieter Robyns
Peter Quax
Wim Lamotte
*>

Suggestion:
Vendor patch:

Apple
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:

Http://www.apple.com/support/downloads/

This article permanently updates the link address: