Privilege Escalation via Crafted App in Apple iOS and Apple TV Audio Drivers

Privilege Escalation via Crafted App in Apple iOS and Apple TV Audio Drivers

CVE-2015-1086 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

The Audio Drivers subsystem in Apple iOS before 8.3 and Apple TV before 7.2 does not properly validate IOKit object metadata, which allows attackers to execute arbitrary code in a privileged context via a crafted app.

Learn more about our Cis Benchmark Audit For Apple Ios.