Code-Signing Bypass Vulnerability in Apple iOS and Apple TV

Code-Signing Bypass Vulnerability in Apple iOS and Apple TV

CVE-2013-0977 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

dyld in Apple iOS before 6.1.3 and Apple TV before 5.2.1 does not properly manage the state of file loading for Mach-O executable files, which allows local users to bypass intended code-signing requirements via a file that contains overlapping segments.

Learn more about our Cis Benchmark Audit For Apple Ios.