USB Hub Descriptor Vulnerability in Apple Mac OS X

USB Hub Descriptor Vulnerability in Apple Mac OS X

CVE-2012-3723 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Apple Mac OS X before 10.7.5 does not properly handle the bNbrPorts field of a USB hub descriptor, which allows physically proximate attackers to execute arbitrary code or cause a denial of service (memory corruption and system crash) by attaching a USB device.

Learn more about our Physical Security Assessment.