CVE-2010-2973

Exploit

EPSS 0.14%
Veröffentlicht 05.08.2010 18:17:58
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Apple ≫ iPhone OS Version4.0

Apple ≫ iPhone OS

Apple ≫ iPhone OS Version4.0 Update- Editioniphone

Apple ≫ iPhone OS

Apple ≫ iPhone OS Version4.0.1

Apple ≫ iPhone OS

Apple ≫ iPhone OS Version4.0.1 Update- Editioniphone

Apple ≫ iPhone OS

Apple ≫ iPhone OS Version4.0

Apple ≫ Ipad

Apple ≫ iPhone OS Version4.0.1

Apple ≫ Ipad

Apple ≫ iPhone OS Version4.0

Apple ≫ Ipod Touch

Apple ≫ iPhone OS Version4.0 Update- Editionipodtouch

Apple ≫ Ipod Touch

Apple ≫ iPhone OS Version4.0.1

Apple ≫ Ipod Touch

Apple ≫ iPhone OS Version4.0.1 Update- Editionipodtouch

Apple ≫ Ipod Touch

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.14%	0.341

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.9	3.4	10	AV:L/AC:M/Au:N/C:C/I:C/A:C

http://lists.apple.com/archives/security-announce/2010//Aug/msg00000.html

http://lists.apple.com/archives/security-announce/2010//Aug/msg00001.html

http://osvdb.org/66827

http://secunia.com/advisories/40807

Vendor Advisory

http://support.apple.com/kb/HT4291

http://support.apple.com/kb/HT4292

http://www.exploit-db.com/exploits/14538

Exploit

http://www.securityfocus.com/bid/42151

https://nvd.nist.gov/vuln/detail/CVE-2010-2973

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-2973

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-2973

EUVD