CVE-2015-5746

CVE-2015-5746

EPSS 1.4%

AppleFileConduit in Apple iOS before 8.4.1 allows attackers to bypass intended restrictions on filesystem access via an afc command that leverages symlink mishandling.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://lists.apple.com/archives/security-announce/2015/Aug/msg00002.html https://support.apple.com/kb/HT205030 http://www.securityfocus.com/bid/76337 http://www.securitytracker.com/id/1033275