Lucene search

[email protected]NVD:CVE-2009-0961

HistoryJun 19, 2009 - 4:30 p.m.

CVE-2009-0961

2009-06-1916:30:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.3

Confidence

Low

EPSS

0.021

Percentile

89.3%

JSON

The Mail component in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 dismisses the call approval dialog when another alert appears, which might allow remote attackers to force the iPhone to place a call without user approval by causing an application to trigger an alert.

Affected configurations

Nvd

Node

appleiphone_osMatch1.0.0

appleiphone_osMatch1.0.1

appleiphone_osMatch1.0.2

appleiphone_osMatch1.1.0

appleiphone_osMatch1.1.1

appleiphone_osMatch1.1.2

appleiphone_osMatch1.1.3

appleiphone_osMatch1.1.4

appleiphone_osMatch1.1.5

appleiphone_osMatch2.0

appleiphone_osMatch2.0.0

appleiphone_osMatch2.0.1

appleiphone_osMatch2.0.2

appleiphone_osMatch2.1

appleiphone_osMatch2.1.1

appleiphone_osMatch2.2

appleiphone_osMatch2.2.1

AND

appleiphone_os

Node

appleiphone_osMatch1.1.0

appleiphone_osMatch1.1.1

appleiphone_osMatch1.1.2

appleiphone_osMatch1.1.3

appleiphone_osMatch1.1.4

appleiphone_osMatch1.1.5

appleiphone_osMatch2.0

appleiphone_osMatch2.0.0

appleiphone_osMatch2.0.1

appleiphone_osMatch2.0.2

appleiphone_osMatch2.1

appleiphone_osMatch2.1.1

appleiphone_osMatch2.2

appleiphone_osMatch2.2.1

AND

appleipod_touch

VendorProductVersionCPE
appleiphone_os1.0.0cpe:2.3:o:apple:iphone_os:1.0.0:*:*:*:*:*:*:*
appleiphone_os1.0.1cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:*
appleiphone_os1.0.2cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:*
appleiphone_os1.1.0cpe:2.3:o:apple:iphone_os:1.1.0:*:*:*:*:*:*:*
appleiphone_os1.1.1cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:*
appleiphone_os1.1.2cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:*
appleiphone_os1.1.3cpe:2.3:o:apple:iphone_os:1.1.3:*:*:*:*:*:*:*
appleiphone_os1.1.4cpe:2.3:o:apple:iphone_os:1.1.4:*:*:*:*:*:*:*
appleiphone_os1.1.5cpe:2.3:o:apple:iphone_os:1.1.5:*:*:*:*:*:*:*
appleiphone_os2.0cpe:2.3:o:apple:iphone_os:2.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	iphone_os	1.0.0	cpe:2.3:o:apple:iphone_os:1.0.0:::::::*
apple	iphone_os	1.0.1	cpe:2.3:o:apple:iphone_os:1.0.1:::::::*
apple	iphone_os	1.0.2	cpe:2.3:o:apple:iphone_os:1.0.2:::::::*
apple	iphone_os	1.1.0	cpe:2.3:o:apple:iphone_os:1.1.0:::::::*
apple	iphone_os	1.1.1	cpe:2.3:o:apple:iphone_os:1.1.1:::::::*
apple	iphone_os	1.1.2	cpe:2.3:o:apple:iphone_os:1.1.2:::::::*
apple	iphone_os	1.1.3	cpe:2.3:o:apple:iphone_os:1.1.3:::::::*
apple	iphone_os	1.1.4	cpe:2.3:o:apple:iphone_os:1.1.4:::::::*
apple	iphone_os	1.1.5	cpe:2.3:o:apple:iphone_os:1.1.5:::::::*
apple	iphone_os	2.0	cpe:2.3:o:apple:iphone_os:2.0:::::::*

Rows per page:

1-10 of 191

References

lists.apple.com/archives/security-announce/2009/Jun/msg00005.html

osvdb.org/55238

support.apple.com/kb/HT3639

www.securityfocus.com/bid/35414

www.vupen.com/english/advisories/2009/1621

exchange.xforce.ibmcloud.com/vulnerabilities/51210

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.3

Confidence

Low

EPSS

0.021

Percentile

89.3%

JSON

Related for NVD:CVE-2009-0961

exploitdb3 cvelist1 cve1 prion1