CVE-2013-5145 Information

Description

kextd in Kext Management in Apple iOS before 7 does not properly verify authorization for IPC messages which allows local users to (1) load or (2) unload kernel extensions via a crafted message.

Reference

http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html http://secunia.com/advisories/54886 http://support.apple.com/kb/HT5934 http://www.securitytracker.com/id/1029054