Home

CVE-2016-5104

Description

The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate with services on iOS devices by connecting to an IPv4 TCP socket.

Risk Information

Base Score
5.3
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS Score
Exploitation Probability
1.754

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) libimobiledevice-debugsource-1.1.5-6.1.x86_64.rpmLinux
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) libimobiledevice-tools-1.1.5-6.1.x86_64.rpmLinux
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) libimobiledevice-tools-debuginfo-1.1.5-6.1.x86_64.rpmLinux
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) libimobiledevice4-1.1.5-6.1.x86_64.rpmLinux
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) libimobiledevice4-debuginfo-1.1.5-6.1.x86_64.rpmLinux
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) libusbmuxd2-1.0.8-12.1.x86_64.rpmLinux
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) libusbmuxd2-debuginfo-1.0.8-12.1.x86_64.rpmLinux
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) usbmuxd-1.0.8-12.1.x86_64.rpmLinux
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) usbmuxd-debuginfo-1.0.8-12.1.x86_64.rpmLinux
SUSE-SU-2016:1639-1(SUSE Linux Enterprise Desktop 12-SP1 ) usbmuxd-debugsource-1.0.8-12.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234