Lucene search

[email protected]CVE-2010-1811

HistorySep 09, 2010 - 10:00 p.m.

CVE-2010-1811

2010-09-0922:00:01

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-1811

imageio

apple ios

remote attackers

arbitrary code

denial of service

memory corruption

application crash

tiff file

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

9.2 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.4%

JSON

ImageIO in Apple iOS before 4.1 on the iPhone and iPod touch allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted TIFF file.

Affected configurations

NVD

Node

appleiphone_osRange<4.1

AND

appleipod_touchMatch-

appleiphone_osMatch-

CPENameOperatorVersion
apple:iphone_osapple iphone oslt4.1

CPE	Name	Operator	Version
apple:iphone_os	apple iphone os	lt	4.1

References

lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

lists.apple.com/archives/security-announce/2010//Sep/msg00002.html

secunia.com/advisories/42314

support.apple.com/kb/HT4334

support.apple.com/kb/HT4435

support.apple.com/kb/HT4456

exchange.xforce.ibmcloud.com/vulnerabilities/61696

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

9.2 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.4%

JSON

Related for CVE-2010-1811

prion1 nvd1 cvelist1 securityvulns3 nessus3 openvas2