2010-11-24

Apple iPhone OS(iPodtouch)

ソフト名:Apple iPhone OS 2.0~4.0.1(iPodtouch)
回避策:アップデートにて対応
脆弱性:権限の昇格, バッファオーバーフロー, セキュリティ制限の回避, ユーザーの許可の無い通話, ローカルコード実行, パスワードの曝露
ソース:
http://support.apple.com/kb/HT4456
http://www.securityfocus.com/bid/45006
http://www.securityfocus.com/bid/45007
http://www.securityfocus.com/bid/45008
http://www.securityfocus.com/bid/45010
http://www.securityfocus.com/bid/45011
http://www.securityfocus.com/bid/45012
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3827
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3828
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3829
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3830
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3831
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3832
http://secunia.com/advisories/42312
http://secunia.com/advisories/42314
http://securitytracker.com/alerts/2010/Nov/1024768.html
http://securitytracker.com/alerts/2010/Nov/1024770.html
http://securitytracker.com/alerts/2010/Nov/1024771.html
http://securitytracker.com/alerts/2010/Nov/1024772.html
http://securitytracker.com/alerts/2010/Nov/1024773.html
http://www.vupen.com/english/advisories/2010/3046
CVE:CVE-2010-3827, CVE-2010-3828, CVE-2010-3829, CVE-2010-3830, CVE-2010-3831, CVE-2010-3832
危険性:High Risk

0 件のコメント:

コメントを投稿