CVE-2017-6979

HIGH

Apple <10.3.2, <10.12.5, <10.2.1, <3.2.2 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-6979. PoCs published by Zimperium zLabs Team.

AI-analyzed exploit summary ziVA is an iOS kernel exploit targeting AppleAVEDriver to achieve privilege escalation on 64-bit iOS devices running versions up to 10.3.1. It requires sandbox escape and device-specific offsets, leveraging vulnerabilities chained by Adam Donenfeld.

Description

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "IOSurface" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Zimperium zLabs Team · textlocalios

https://www.exploit-db.com/exploits/42555

View Code ZIP pw:eip

ziVA is an iOS kernel exploit targeting AppleAVEDriver to achieve privilege escalation on 64-bit iOS devices running versions up to 10.3.1. It requires sandbox escape and device-specific offsets, leveraging vulnerabilities chained by Adam Donenfeld.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Complex

Reliability

Reliable

Target: Apple iOS <= 10.3.1

No auth needed

Prerequisites: Sandbox escape (e.g., mediaserverd context) · Device-specific offsets for AppleAVEDriver

MITRE ATT&CK