Code injection

2013-09-1910:28:00

PRIOn knowledge base

www.prio-n.com

5.9 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

56.3%

JSON

The Twitter subsystem in Apple iOS before 7 does not require API conformity for access to Twitter daemon interfaces, which allows attackers to post Tweets via a crafted app that sends direct requests to the daemon.

CPENameOperatorVersion
iphone_oseq6.1.2
iphone_oseq3.0
iphone_oseq3.2
iphone_oseq3.1.3
iphone_oseq1.0.2
iphone_oseq4.3.2
iphone_oseq4.0.2
iphone_osle6.1.4
iphone_oseq2.2
iphone_oseq1.1.1

Name	Operator	Version
iphone_os	eq	6.1.2
iphone_os	eq	3.0
iphone_os	eq	3.2
iphone_os	eq	3.1.3
iphone_os	eq	1.0.2
iphone_os	eq	4.3.2
iphone_os	eq	4.0.2
iphone_os	le	6.1.4
iphone_os	eq	2.2
iphone_os	eq	1.1.1