2014-09-18 10:00:00
apple
PUBLISHED
The Assets subsystem in Apple iOS before 8 and Apple TV before 7 allows man-in-the-middle attackers to spoof a devices update status via a crafted Last-Modified HTTP response header.