Lucene search

PRIOn knowledge basePRION:CVE-2010-2973

HistoryAug 05, 2010 - 6:17 p.m.

Integer overflow

2010-08-0518:17:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.4%

JSON

Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.

CPENameOperatorVersion
iphone_oseq4.0 iphone
iphone_oseq4.0
iphone_oseq4.0.1
iphone_oseq4.0.1 iphone
iphone_oseq4.0
iphone_oseq4.0.1
iphone_oseq4.0 ipodtouch
iphone_oseq4.0
iphone_oseq4.0.1 ipodtouch
iphone_oseq4.0.1

Name	Operator	Version
iphone_os	eq	4.0 iphone
iphone_os	eq	4.0
iphone_os	eq	4.0.1
iphone_os	eq	4.0.1 iphone
iphone_os	eq	4.0
iphone_os	eq	4.0.1
iphone_os	eq	4.0 ipodtouch
iphone_os	eq	4.0
iphone_os	eq	4.0.1 ipodtouch
iphone_os	eq	4.0.1

References

lists.apple.com/archives/security-announce/2010//Aug/msg00000.html

lists.apple.com/archives/security-announce/2010//Aug/msg00001.html

osvdb.org/66827

secunia.com/advisories/40807

support.apple.com/kb/HT4291

support.apple.com/kb/HT4292

www.securityfocus.com/bid/42151

www.exploit-db.com/exploits/14538

6.5 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.4%

JSON

Related for PRION:CVE-2010-2973