CVE-2010-2973
Published Aug 5, 2010
Last updated 2 years ago
Overview
- Description
- Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.9
- Impact score
- 10
- Exploitability score
- 3.4
- Vector string
- AV:L/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-264
Evaluator
- Comment
- -
- Impact
- Per: http://xforce.iss.net/xforce/xfdb/60856 'Platforms Affected: * Apple iPhone OS 4.0 iPodtouch * Apple iPhone OS 4.0 * Apple iPhone OS 4.0.1 iPodtouch * Apple iPhone OS 4.0.1 ' Per: http://www.securityfocus.com/bid/42151/discuss 'versions 4.0.1 and prior are vulnerable.'
- Solution
- Per: http://xforce.iss.net/xforce/xfdb/60856 'Platforms Affected: * Apple iPhone OS 4.0 iPodtouch * Apple iPhone OS 4.0 * Apple iPhone OS 4.0.1 iPodtouch * Apple iPhone OS 4.0.1 ' Per: http://www.securityfocus.com/bid/42151/discuss 'versions 4.0.1 and prior are vulnerable.'
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12E22AF0-2B66-425A-A1EE-4F0E3B0433E7"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0:-:iphone:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "954CDDCB-AC22-448D-8ECA-CFA4DBA1BC27"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB34ECBE-33E8-40E1-936B-7800D2525AE6"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:-:iphone:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ECE983F6-A597-4581-A254-80396B54F2D5"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "340C4071-1447-477F-942A-8E09EA29F917"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12E22AF0-2B66-425A-A1EE-4F0E3B0433E7"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB34ECBE-33E8-40E1-936B-7800D2525AE6"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:apple:ipad:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "BAADE29A-712B-4AD5-A78B-6AD537BA9196"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12E22AF0-2B66-425A-A1EE-4F0E3B0433E7"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0:-:ipodtouch:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "54FECD66-4216-43FC-9959-B8EA9545449C"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB34ECBE-33E8-40E1-936B-7800D2525AE6"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:-:ipodtouch:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "586C0CB3-98E5-4CB3-8F23-27F01233D6C4"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:apple:ipod_touch:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "88FA2602-DDAB-4E23-A3D2-FB712970AAD1"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]