Lucene search
HistoryMar 14, 2014 - 10:55 a.m.
CVE-2014-1272
cve-2014-1272
crashhousekeeping
apple ios
apple tv
symlink
file permissions
nvd
6.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
5.7 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
CrashHouseKeeping in Crash Reporting in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to change arbitrary file permissions by leveraging a symlink.
Affected configurations
Node
appletvosRange≤6.0.2
ORappletvosMatch6.0
ORappletvosMatch6.0.1
Node
appleiphone_osRange≤7.0.6
ORappleiphone_osMatch7.0
ORappleiphone_osMatch7.0.1
ORappleiphone_osMatch7.0.2
ORappleiphone_osMatch7.0.3
ORappleiphone_osMatch7.0.4
ORappleiphone_osMatch7.0.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:tvos | apple tvos | le | 6.0.2 |
| apple:tvos | apple tvos | eq | 6.0 |
| apple:tvos | apple tvos | eq | 6.0.1 |
Related
prion
prion
Code injection
2014-03-14 10:55:00
cvelist
cvelist
CVE-2014-1272
2014-03-14 10:00:00
nvd
nvd
CVE-2014-1272
2014-03-14 10:55:05
securityvulns
securityvulns
APPLE-SA-2014-03-10-2 Apple TV 6.1
2014-03-13 00:00:00
APPLE-SA-2014-03-10-1 iOS 7.1
2014-03-13 00:00:00
Apple iOS multiple security vulnerabilities
2014-03-31 00:00:00
nessus
nessus
Apple TV < 6.1 Multiple Vulnerabilities
2014-03-12 00:00:00
6.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
5.7 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2014-1272