Medium severity5.3NVD Advisory· Published Jun 13, 2016· Updated Jun 17, 2026
CVE-2016-5104
CVE-2016-5104
Description
The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate with services on iOS devices by connecting to an IPv4 TCP socket.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
27cpe:2.3:a:libimobiledevice:libimobiledevice:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:libimobiledevice:libimobiledevice:*:*:*:*:*:*:*:*range: <=1.2.0
- (no CPE)
cpe:2.3:a:libimobiledevice:libusbmuxd:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:libimobiledevice:libusbmuxd:*:*:*:*:*:*:*:*range: <=1.0.10
- (no CPE)
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
- osv-coords18 versionspkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1pkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libimobiledevice&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1pkg:rpm/suse/usbmuxd&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/usbmuxd&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/usbmuxd&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/usbmuxd&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/usbmuxd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/usbmuxd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/usbmuxd&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/usbmuxd&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1
< 1.1.5-6.1+ 17 more
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.1.5-6.1
- (no CPE)range: < 1.0.8-12.1
- (no CPE)range: < 1.0.8-12.1
- (no CPE)range: < 1.0.8-12.1
- (no CPE)range: < 1.0.8-12.1
- (no CPE)range: < 1.0.8-12.1
- (no CPE)range: < 1.0.8-12.1
- (no CPE)range: < 1.0.8-12.1
- (no CPE)range: < 1.0.8-12.1
Patches
Vulnerability mechanics
References
11- lists.opensuse.org/opensuse-security-announce/2016-06/msg00042.htmlnvd
- lists.opensuse.org/opensuse-updates/2016-06/msg00029.htmlnvd
- www.openwall.com/lists/oss-security/2016/05/26/1nvd
- www.openwall.com/lists/oss-security/2016/05/26/6nvd
- www.ubuntu.com/usn/USN-3026-1nvd
- www.ubuntu.com/usn/USN-3026-2nvd
- bugzilla.redhat.com/show_bug.cginvd
- github.com/libimobiledevice/libimobiledevice/commit/df1f5c4d70d0c19ad40072f5246ca457e7f9849envd
- github.com/libimobiledevice/libusbmuxd/commit/4397b3376dc4e4cb1c991d0aed61ce6482614196nvd
- lists.debian.org/debian-lts-announce/2020/02/msg00027.htmlnvd
- lists.debian.org/debian-lts-announce/2020/02/msg00028.htmlnvd
News mentions
0No linked articles in our index yet.