CVE-2012-0065
EPSS 0.26%
Description
Heap-based buffer overflow in the receive_packet function in libusbmuxd/libusbmuxd.c in usbmuxd 1.0.5 through 1.0.7 allows physically proximate attackers to execute arbitrary code via a long SerialNumber field in a property list.
How to fix CVE-2012-0065
To remediate CVE-2012-0065, upgrade the affected package to a fixed version below.
- Debian/usbmuxd—upgrade to 1.0.7-2 or later
Is CVE-2012-0065 being exploited?
Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.0.7-2