CVE Reference: CVE-2013-0979

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2013-0979

Description:
lockdownd in Lockdown in Apple iOS before 6.1.3 does not properly consider file types during the permission-setting step of a backup restoration, which allows local users to change the permissions of arbitrary files via a backup that contains a pathname with a symlink.

CVE Status:
Candidate

References:

CONFIRM
  http://support.apple.com/kb/HT5704

APPLE
  http://lists.apple.com/archives/security-announce/2013/Mar/msg00004.html


Return to the previous page.