The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly perform state management. Successful exploitation could allow local user to read a persistent device identifier.