CVE-2016-5104

Source
Severity Medium
Remote Yes
Type Access restriction bypass
Description
The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers on the local network to bypass intended access restrictions and communicate with services on affected devices by connecting to an IPv4 TCP socket.
Group Package Affected Fixed Severity Status Ticket
AVG-7 libusbmuxd 1.0.10-1 1.0.10-2 Medium Fixed
AVG-8 libimobiledevice 1.2.0-3 1.2.0-4 Medium Fixed
Date Advisory Group Package Severity Description
05 Jun 2017 ASA-201706-5 AVG-7 libusbmuxd Medium access restriction bypass
27 Jan 2017 ASA-201701-34 AVG-8 libimobiledevice Medium access restriction bypass
References
http://www.openwall.com/lists/oss-security/2016/05/26/6