CVE-2010-2973

Published Aug 5, 2010

Last updated 3 months ago

CVSS info 6.9

Overview

Description: Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.9
Impact score: 10
Exploitability score: 3.4
Vector string: AV:L/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-264

Hype score: Not currently trending

Evaluator

Comment: -
Impact: Per: http://xforce.iss.net/xforce/xfdb/60856 'Platforms Affected: * Apple iPhone OS 4.0 iPodtouch * Apple iPhone OS 4.0 * Apple iPhone OS 4.0.1 iPodtouch * Apple iPhone OS 4.0.1 ' Per: http://www.securityfocus.com/bid/42151/discuss 'versions 4.0.1 and prior are vulnerable.'
Solution: Per: http://xforce.iss.net/xforce/xfdb/60856 'Platforms Affected: * Apple iPhone OS 4.0 iPodtouch * Apple iPhone OS 4.0 * Apple iPhone OS 4.0.1 iPodtouch * Apple iPhone OS 4.0.1 ' Per: http://www.securityfocus.com/bid/42151/discuss 'versions 4.0.1 and prior are vulnerable.'

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12E22AF0-2B66-425A-A1EE-4F0E3B0433E7"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "954CDDCB-AC22-448D-8ECA-CFA4DBA1BC27"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB34ECBE-33E8-40E1-936B-7800D2525AE6"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:-:iphone:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECE983F6-A597-4581-A254-80396B54F2D5"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "340C4071-1447-477F-942A-8E09EA29F917"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12E22AF0-2B66-425A-A1EE-4F0E3B0433E7"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB34ECBE-33E8-40E1-936B-7800D2525AE6"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:apple:ipad:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BAADE29A-712B-4AD5-A78B-6AD537BA9196"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12E22AF0-2B66-425A-A1EE-4F0E3B0433E7"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54FECD66-4216-43FC-9959-B8EA9545449C"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB34ECBE-33E8-40E1-936B-7800D2525AE6"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:4.0.1:-:ipodtouch:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "586C0CB3-98E5-4CB3-8F23-27F01233D6C4"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:apple:ipod_touch:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "88FA2602-DDAB-4E23-A3D2-FB712970AAD1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Evaluator

Configurations

References