Apple TV/Mac OS X/iOS CVE-2014-4378 Out of Bounds Read Memory Corruption Vulnerability
BID:69915
Info
Apple TV/Mac OS X/iOS CVE-2014-4378 Out of Bounds Read Memory Corruption Vulnerability
| Bugtraq ID: | 69915 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2014-4378 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 17 2014 12:00AM |
| Updated: | Sep 17 2014 12:00AM |
| Credit: | Felipe Andres Manzano of Binamuse VRT. |
| Vulnerable: |
Apple Mac OS X 10.9.1 Apple Mac OS X 10.9.4 Apple Mac OS X 10.9.3 Apple Mac OS X 10.9.2 Apple Mac OS X 10.9 Apple iPod Touch 0 Apple iPhone 0 Apple iPad 0 Apple iOS 7.0.6 Apple iOS 7.0.3 Apple iOS 7.0.2 Apple iOS 7.0.1 Apple iOS 6.3.1 Apple iOS 6.1.6 Apple iOS 6.1.4 Apple iOS 6.1.3 Apple iOS 4.2.1 Apple iOS 4.0.2 Apple iOS 4.0.1 Apple iOS 3.2.2 Apple iOS 3.2.1 Apple iOS 7.1.2 Apple iOS 7.1.1 Apple iOS 7.1 Apple iOS 7.0.4 Apple iOS 7 Apple iOS 6.1 Apple iOS 6.0.2 Apple iOS 6.0.1 Apple iOS 6 Apple iOS 5.1.1 Apple iOS 5.1 Apple iOS 5.0.1 Apple iOS 5 Apple iOS 4.3.5 Apple iOS 4.3.4 Apple iOS 4.3.3 Apple iOS 4.3.2 Apple iOS 4.3.1 Apple iOS 4.3 Apple iOS 4.2.9 Apple iOS 4.2.8 Apple iOS 4.2.7 Apple iOS 4.2.6 Apple iOS 4.2.5 Apple iOS 4.2.10 Apple iOS 4.2 Apple iOS 4.1 Apple iOS 4 Apple iOS 3.2 Apple iOS 3.1 Apple iOS 3.0 Apple iOS 2.1 Apple iOS 2.0 Apple Apple TV 6.0.2 Apple Apple TV 5.2.1 Apple Apple TV 5.1.1 Apple Apple TV 4.4.2 Apple Apple TV 4.4 Apple Apple TV 6.1.2 Apple Apple TV 6.1.1 Apple Apple TV 6.1 Apple Apple TV 6.0.1 Apple Apple TV 6.0 Apple Apple TV 5.2 Apple Apple TV 5.1.0 Apple Apple TV 5.1 Apple Apple TV 5.0.2 Apple Apple TV 5.0.1 Apple Apple TV 5.0.0 Apple Apple TV 5.0 Apple Apple TV 4.4.4 Apple Apple TV 4.4.3 Apple Apple TV 4.4 Apple Apple TV 4.3.0 Apple Apple TV 4.3 Apple Apple TV 4.2.2 Apple Apple TV 4.2.1 Apple Apple TV 4.2.0 Apple Apple TV 4.2 Apple Apple TV 4.1.1 Apple Apple TV 4.1.0 Apple Apple TV 4.1 Apple Apple TV 4.0 Apple Apple TV 3.0.2 Apple Apple TV 3.0.1 Apple Apple TV 3.0.0 |
| Not Vulnerable: |
Apple Mac OS X 10.9.5 Apple iOS 8 Apple Apple TV 7 |
Discussion
Apple TV/Mac OS X/iOS CVE-2014-4378 Out of Bounds Read Memory Corruption Vulnerability
Apple TV, Mac OS X, and iOS are prone to a memory-corruption vulnerability.
Attackers can exploit this issue to cause denial-of-service conditions or gain access to sensitive information. other attacks are also possible.
NOTE: This issue was previously discussed in BID 69882 (Apple iOS Prior to iOS 8 and TV Prior to TV 7 Multiple Vulnerabilities) but has been given its own record to better document it.
This issue is fixed in:
Apple Mac Os X 10.9.5
Apple iOS 8
Apple TV 7
Apple TV, Mac OS X, and iOS are prone to a memory-corruption vulnerability.
Attackers can exploit this issue to cause denial-of-service conditions or gain access to sensitive information. other attacks are also possible.
NOTE: This issue was previously discussed in BID 69882 (Apple iOS Prior to iOS 8 and TV Prior to TV 7 Multiple Vulnerabilities) but has been given its own record to better document it.
This issue is fixed in:
Apple Mac Os X 10.9.5
Apple iOS 8
Apple TV 7
Exploit / POC
Apple TV/Mac OS X/iOS CVE-2014-4378 Out of Bounds Read Memory Corruption Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Apple TV/Mac OS X/iOS CVE-2014-4378 Out of Bounds Read Memory Corruption Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.