CVE-2014-1350

Sažetak

Settings in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended iCloud password requirement, and turn off the Find My iPhone service, by leveraging incorrect state management.

Reference

http://archives.neohapsis.com/archives/bugtraq/2014-06/0174.html
http://www.securityfocus.com/bid/68276
http://www.securitytracker.com/id/1030500

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

07-01-2017 - 02:59

Objavljeno

01-07-2014 - 10:17