CVE-2013-0964

The kernel in Apple iOS before 6.1 and Apple TV before 5.2 does not properly validate copyin and copyout arguments, which allows local users to bypass intended pointer restrictions and access locations in the first kernel-memory page by specifying a length of less than one page.

Published: Jan 29, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-0964
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.6
AV:L/AC:L/Au:N/C:P/I:P/A:N

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
apple / tvos	1.0.0	1.0.0.x
apple / tvos	1.1.0	1.1.0.x
apple / tvos	2.0.0	2.0.0.x
apple / tvos	2.0.1	2.0.1.x
apple / tvos	2.0.2	2.0.2.x
apple / tvos	2.1.0	2.1.0.x
apple / tvos	2.2.0	2.2.0.x
apple / tvos	2.3.0	2.3.0.x
apple / tvos	2.3.1	2.3.1.x
apple / tvos	2.4.0	2.4.0.x
apple / tvos	3.0.0	3.0.0.x
apple / tvos	3.0.1	3.0.1.x
apple / tvos	3.0.2	3.0.2.x
apple / tvos	4.1.0	4.1.0.x
apple / tvos	4.1.1	4.1.1.x
apple / tvos	4.2.0	4.2.0.x
apple / tvos	4.2.1	4.2.1.x
apple / tvos	4.2.2	4.2.2.x
apple / tvos	4.3.0	4.3.0.x
apple / tvos	4.4.0	4.4.0.x
apple / tvos	4.4.2	4.4.2.x
apple / tvos	4.4.3	4.4.3.x
apple / tvos	4.4.4	4.4.4.x
apple / tvos	5.0.0	5.0.0.x
apple / tvos	5.0.1	5.0.1.x
apple / tvos	5.0.2	5.0.2.x
apple / tvos	5.1.0	5.1.0.x
apple / tvos	-	5.1.1.x
apple / iphone_os	-	6.0.2.x
apple / iphone_os	6.0	6.0.x
apple / iphone_os	6.0.1	6.0.1.x

Vulnerability Database

289,599

CVE-2013-0964