Computer Security
[EN] securityvulns.ru no-pyccku


Apple TV security vulnerabilities
Published:27.10.2014
Source:
SecurityVulns ID:14063
Type:client
Threat Level:
6/10
Description:Unauthorized bluetooth pairing, SSL poodle attack.
Affected:APPLE : Apple TV 7.0
CVE:CVE-2014-4428 (Bluetooth in Apple OS X before 10.10 does not require encryption for HID Low Energy devices, which allows remote attackers to spoof a device by leveraging previous pairing.)
 CVE-2014-3566 (The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.)
Original documentdocumentAPPLE, APPLE-SA-2014-10-20-2 Apple TV 7.0.1 (27.10.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod