Heap overflow

2010-11-2620:00:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.7%

JSON

Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple iOS before 4.2 on the iPhone and iPad allows remote attackers to execute arbitrary code on the baseband processor via a crafted Temporary Mobile Subscriber Identity (TMSI) field.

CPENameOperatorVersion
iphone_osle4.1
iphone_oseq1.0.0
iphone_oseq1.0.1
iphone_oseq1.0.2
iphone_oseq1.1.0
iphone_oseq1.1.1
iphone_oseq1.1.2
iphone_oseq1.1.3
iphone_oseq1.1.4
iphone_oseq1.1.5

Name	Operator	Version
iphone_os	le	4.1
iphone_os	eq	1.0.0
iphone_os	eq	1.0.1
iphone_os	eq	1.0.2
iphone_os	eq	1.1.0
iphone_os	eq	1.1.1
iphone_os	eq	1.1.2
iphone_os	eq	1.1.3
iphone_os	eq	1.1.4
iphone_os	eq	1.1.5

Rows per page:

1-10 of 291

References

lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

secunia.com/advisories/42314

support.apple.com/kb/HT4456

www.securitytracker.com/id?1024770

www.vupen.com/english/advisories/2010/3046

exchange.xforce.ibmcloud.com/vulnerabilities/63421