Apple TV and iOS CVE-2014-4405 NULL Pointer Dereference Remote Code Execution Vulnerability
Apple TV and iOS are prone to a remote code-execution vulnerability.
An attacker can leverage this issue to execute arbitrary code with system privileges. Failed exploit attempts will likely result in denial-of-service conditions.
NOTE: This issue was previously discussed in BID 69882 (Apple iOS Prior to iOS 8 and TV Prior to TV 7 Multiple Vulnerabilities) but has been given its own record to better document it.
This issue is fixed in:
Apple iOS 8
Apple TV 7