Lucene search
MitreCVELIST:CVE-2017-14315HistorySep 12, 2017 - 3:00 p.m.
CVE-2017-14315
2017-09-1215:00:00
mitre
www.cve.org
1
In Apple iOS 7 through 9, due to a BlueBorne flaw in the implementation of LEAP (Low Energy Audio Protocol), a large audio command can be sent to a targeted device and lead to a heap overflow with attacker-controlled data. Since the audio commands sent via LEAP are not properly validated, an attacker can use this overflow to gain full control of the device through the relatively high privileges of the Bluetooth stack in iOS. The attack bypasses Bluetooth access control; however, the default โBluetooth Onโ value must be present in Settings.
Related
prion
prion
Design/Logic Flaw
2017-09-12 15:29:00
nessus
nessus
Apple TV <= 7.2.2 Bluetooth Remote Code Execution (BlueBorne)
2017-09-14 00:00:00
cve
cve
CVE-2017-14315
2017-09-12 15:29:00
nvd
nvd
CVE-2017-14315
2017-09-12 15:29:00
apple
apple
About the security content of Apple TV Software 7.3
2019-05-13 00:00:00
About the security content of Apple TV Software 7.3 - Apple Support
2019-05-13 05:23:03
lenovo
lenovo
Bluetooth โBlueBorneโ Vulnerabilities - Lenovo Support US
2019-01-23 12:42:26
Bluetooth โBlueBorneโ Vulnerabilities - NL
2018-07-19 12:31:00
cert
cert
Multiple Bluetooth implementation vulnerabilities affect many devices
2017-09-12 00:00:00
fortinet
fortinet
BlueBorne vulnerabilities and security flaws in Bluetooth stacks
2017-11-03 00:00:00
pentestit
pentestit
How to: Protect Systems From BlueBorne Attacks?
2017-09-14 21:22:24
threatpost
threatpost
Apple Patches Intel Side-Channel Bugs; Updates iOS, macOS and More
2019-05-14 20:31:36