CVE-2014-4364

MEDIUM

Apple iOS <8 - Auth Bypass

Title source: llm

Description

The 802.1X subsystem in Apple iOS before 8 and Apple TV before 7 does not require strong authentication methods, which allows remote attackers to calculate credentials by offering LEAP authentication from a crafted Wi-Fi AP and then performing a cryptographic attack against the MS-CHAPv1 hash.

References (10)

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2014-09/0107.html

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html

[Vendor Advisory] http://support.apple.com/kb/HT6441

[Vendor Advisory] http://support.apple.com/kb/HT6442

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/96097

[Vendor Advisory] https://support.apple.com/kb/HT6535

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/69882

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/69913

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1030866

Scores

CVSS v3 5.6

EPSS 0.0050

EPSS Percentile 65.6%

Attack Vector ADJACENT_NETWORK

CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Classification

CWE

CWE-310

Status draft

Affected Products (17)

apple/iphone_os < 7.1.2

apple/iphone_os

apple/iphone_os

apple/iphone_os

apple/iphone_os

apple/iphone_os

apple/iphone_os

apple/iphone_os

apple/iphone_os

apple/iphone_os

apple/tvos < 6.2

apple/tvos

apple/tvos

apple/tvos

apple/tvos

... and 2 more

Timeline

Published Sep 18, 2014

Tracked Since Feb 18, 2026