Penetration Testing UK

CVE-2016-1760

CVE-2016-1760

Severity Score

2.1

Access Vector

LOCAL

Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

Summary

The XPC Services API in LaunchServices in Apple iOS before 9.3 allows attackers to bypass intended event-handler restrictions and modify an arbitrary app's events via a crafted app.

Learn more about our Penetration Testing services.