Lucene search
HistoryNov 11, 2011 - 6:55 p.m.
CVE-2011-3441
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
5
Confidence
Low
EPSS
0.004
Percentile
72.2%
libinfo in Apple iOS before 5.0.1 does not properly formulate domain-name queries, which allows remote attackers to obtain sensitive information via a crafted DNS hostname.
Affected configurations
Node
appleiphone_osRange≤5.0
ORappleiphone_osMatch1.0
ORappleiphone_osMatch1.0.0
ORappleiphone_osMatch1.0.1
ORappleiphone_osMatch1.0.1-iphone
ORappleiphone_osMatch1.0.2
ORappleiphone_osMatch1.0.2-iphone
ORappleiphone_osMatch1.1
ORappleiphone_osMatch1.1.0
ORappleiphone_osMatch1.1.0-iphone
ORappleiphone_osMatch1.1.0-ipodtouch
ORappleiphone_osMatch1.1.1
ORappleiphone_osMatch1.1.1-iphone
ORappleiphone_osMatch1.1.2
ORappleiphone_osMatch1.1.2-iphone
ORappleiphone_osMatch1.1.2-ipodtouch
ORappleiphone_osMatch1.1.3
ORappleiphone_osMatch1.1.3-iphone
ORappleiphone_osMatch1.1.3-ipodtouch
ORappleiphone_osMatch1.1.4
ORappleiphone_osMatch1.1.4-iphone
ORappleiphone_osMatch1.1.4-ipodtouch
ORappleiphone_osMatch1.1.5
ORappleiphone_osMatch1.1.5-iphone
ORappleiphone_osMatch1.1.5-ipodtouch
ORappleiphone_osMatch2.0
ORappleiphone_osMatch2.0.0
ORappleiphone_osMatch2.0.0-iphone
ORappleiphone_osMatch2.0.0-ipodtouch
ORappleiphone_osMatch2.0.1
ORappleiphone_osMatch2.0.1-iphone
ORappleiphone_osMatch2.0.1-ipodtouch
ORappleiphone_osMatch2.0.2
ORappleiphone_osMatch2.0.2-iphone
ORappleiphone_osMatch2.0.2-ipodtouch
ORappleiphone_osMatch2.1
ORappleiphone_osMatch2.1-iphone
ORappleiphone_osMatch2.1-ipodtouch
ORappleiphone_osMatch2.1.1
ORappleiphone_osMatch2.2
ORappleiphone_osMatch2.2-iphone
ORappleiphone_osMatch2.2-ipodtouch
ORappleiphone_osMatch2.2.1
ORappleiphone_osMatch2.2.1-iphone
ORappleiphone_osMatch2.2.1-ipodtouch
ORappleiphone_osMatch3.0
ORappleiphone_osMatch3.0-iphone
ORappleiphone_osMatch3.0-ipodtouch
ORappleiphone_osMatch3.0.1
ORappleiphone_osMatch3.0.1-iphone
ORappleiphone_osMatch3.0.1-ipodtouch
ORappleiphone_osMatch3.1
ORappleiphone_osMatch3.1-iphone
ORappleiphone_osMatch3.1-ipodtouch
ORappleiphone_osMatch3.1.2
ORappleiphone_osMatch3.1.2-iphone
ORappleiphone_osMatch3.1.2-ipodtouch
ORappleiphone_osMatch3.1.3
ORappleiphone_osMatch3.1.3-iphone
ORappleiphone_osMatch3.1.3-ipodtouch
ORappleiphone_osMatch3.2
ORappleiphone_osMatch3.2-iphone
ORappleiphone_osMatch3.2-ipodtouch
ORappleiphone_osMatch3.2.1
ORappleiphone_osMatch3.2.1-ipad
ORappleiphone_osMatch3.2.2
ORappleiphone_osMatch3.2.2-ipad
ORappleiphone_osMatch4.0
ORappleiphone_osMatch4.0-iphone
ORappleiphone_osMatch4.0-ipodtouch
ORappleiphone_osMatch4.0.1
ORappleiphone_osMatch4.0.1-iphone
ORappleiphone_osMatch4.0.1-ipodtouch
ORappleiphone_osMatch4.0.2
ORappleiphone_osMatch4.0.2-iphone
ORappleiphone_osMatch4.0.2-ipodtouch
ORappleiphone_osMatch4.1
ORappleiphone_osMatch4.2
ORappleiphone_osMatch4.2.1
ORappleiphone_osMatch4.2.5
ORappleiphone_osMatch4.2.8
ORappleiphone_osMatch4.2.9
ORappleiphone_osMatch4.3.0
ORappleiphone_osMatch4.3.1
ORappleiphone_osMatch4.3.2
ORappleiphone_osMatch4.3.3
ORappleiphone_osMatch4.3.4
ORappleiphone_osMatch4.3.5
ORappleiphone_osMatch4.3.5-ipad
ORappleiphone_osMatch4.3.5-ipodtouch
ORappleiphone_osMatch5.0-ipad
ORappleiphone_osMatch5.0-iphone
ORappleiphone_osMatch5.0-ipodtouch
Related
seebug
seebug
Apple iOS Libinfo组件信息泄露漏洞
2012-02-04 00:00:00
Apple iOS libinfo信息泄露漏洞
2011-11-17 00:00:00
cvelist
cvelist
CVE-2011-3441
2011-11-11 18:00:00
prion
prion
Design/Logic Flaw
2011-11-11 18:55:00
cve
cve
CVE-2011-3441
2011-11-11 18:55:01
nessus
nessus
Apple iOS < 5.0.1 Multiple Vulnerabilities
2011-10-12 00:00:00
Apple iOS < 5.0.1 Multiple Vulnerabilities
2012-02-14 00:00:00
Mac OS X 10.7.x < 10.7.3 Multiple Vulnerabilities (BEAST)
2012-02-02 00:00:00
securityvulns
securityvulns
APPLE-SA-2011-11-10-1 iOS 5.0.1 Software Update
2011-11-16 00:00:00
Apple OS X multiple security vulnerabilities
2012-02-03 00:00:00
APPLE-SA-2012-02-01-1 OS X Lion v10.7.3 and Security Update 2012-001
2012-02-03 00:00:00
openvas
openvas
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
5
Confidence
Low
EPSS
0.004
Percentile
72.2%
Related for NVD:CVE-2011-3441