Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-1061

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2015-1061
Last Modified 28 Sep 2015 08:37:40
Published 12 Mar 2015 06:59:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-1061

Summary

IOSurface in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages "type confusion" during serialized-object handling.

Vulnerable Systems

Operating System

  • Apple Iphone Os 8.1.3

  • Apple Mac Os X 10.10.2

Application

  • Apple Tv 7.0.3


References

CONFIRM - https://support.apple.com/HT204426

CONFIRM - https://support.apple.com/HT204423

CONFIRM - https://support.apple.com/HT204413

APPLE - APPLE-SA-2015-03-09-3

APPLE - APPLE-SA-2015-03-09-2

APPLE - APPLE-SA-2015-03-09-1

SECTRACK - 1031864

BID - 73004

Related Patches

Apple 2015-002 Security Update for Mac OS X 10.10.2 (HT204413)

Apple 2015-002 Security Update for Mac OS X 10.8.5 (HT204413)

Apple 2015-002 Security Update for Mac OS X 10.9.5 (HT204413)

Apple 2015-003 Security Update for Mac OS X 10.10.2 (HT204563)

Apple 2015-003 Security Update for Mac OS X 10.10.2 (Early 2015 Mac) (HT204563)


Last Updated: 27 May 2016 10:55:47