2 matches found
CVE-2016-5104
CVE-2016-5104 affects libimobiledevice and libusbmuxd. The issue is in socket_create (common/socket.c) enabling an IPv4 TCP socket connection that lets remote attackers bypass access controls and communicate with services on iOS devices. Public advisories note sockets listening on INADDR_ANY as t...
CVE-2013-2142
CVE-2013-2142 affects libimobiledevice 1.1.4 where, if HOME and XDG_CONFIG_HOME are not set, a local user can cause a symlink attack to overwrite arbitrary files in /tmp/root/.config/libimobiledevice/ (HostCertificate.pem, HostPrivateKey.pem, libimobiledevicerc, RootCertificate.pem, RootPrivateKe...