← back
CVE-2013-0963

CVE-2013-0963

EPSS 0.2%
Identity Services in Apple iOS before 6.1 does not properly handle validation failures of AppleID certificates, which might allow physically proximate attackers to bypass authentication by leveraging an incorrect assignment of an empty string value to an AppleID.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.apple.com/archives/security-announce/2013/Jan/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2013/Mar/msg00002.htmlhttp://support.apple.com/kb/HT5642