Computer Security
[EN] securityvulns.ru no-pyccku


Apple iOS authentication bypass
Published:18.11.2013
Source:
SecurityVulns ID:13401
Type:local
Threat Level:
4/10
Description:It's possible to complete AppStore transaction without entering password.
Affected:APPLE : Apple iOS 7.0
CVE:CVE-2013-5193 (The App Store component in Apple iOS before 7.0.4 does not properly enforce an intended transaction-time password requirement, which allows local users to complete a (1) App purchase or (2) In-App purchase by leveraging previous entry of Apple ID credentials.)
Original documentdocumentAPPLE, APPLE-SA-2013-11-14-1 iOS 7.0.4 (18.11.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod