CVE-2015-5769
Description
The MSVDX driver in Apple iOS before 8.4.1 allows remote attackers to cause a denial of service (device crash) via a crafted video.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A crafted video can crash iOS devices via the MSVDX driver, fixed in iOS 8.4.1.
Vulnerability
The vulnerability resides in the MSVDX driver, a component responsible for video decoding in Apple iOS. A remote attacker can trigger a denial of service by sending a specially crafted video to an affected device. All versions of iOS prior to 8.4.1 are vulnerable.
Exploitation
An attacker with network access can deliver a malicious video file to the target device, for example via a web page, email, or messaging app. No user interaction beyond viewing the video is required. The crafted video exploits a flaw in the MSVDX driver, causing the device to crash.
Impact
Successful exploitation results in a denial of service, causing the iOS device to crash and potentially reboot. No data compromise or privilege escalation is indicated; the impact is limited to temporary unavailability.
Mitigation
Apple addressed this issue in iOS 8.4.1, released on August 13, 2015 [1]. Users should update their devices to iOS 8.4.1 or later via the Settings app. No workarounds are available for unpatched versions.
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <8.4.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- lists.apple.com/archives/security-announce/2015/Aug/msg00002.htmlnvdVendor Advisory
- support.apple.com/kb/HT205030nvdVendor Advisory
- www.securityfocus.com/bid/76337nvd
- www.securitytracker.com/id/1033275nvd
News mentions
0No linked articles in our index yet.