Lucene search
HistoryAug 05, 2010 - 6:17 p.m.
CVE-2010-2973
cve
2010-2973
integer overflow
iosurface
apple ios
privilege escalation
jailbreakme
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.
Affected configurations
Node
appleiphone_osMatch4.0
ORappleiphone_osMatch4.0-iphone
ORappleiphone_osMatch4.0.1
ORappleiphone_osMatch4.0.1-iphone
appleiphone_os
Node
appleiphone_osMatch4.0
ORappleiphone_osMatch4.0.1
appleipad
Node
appleiphone_osMatch4.0
ORappleiphone_osMatch4.0-ipodtouch
ORappleiphone_osMatch4.0.1
ORappleiphone_osMatch4.0.1-ipodtouch
appleipod_touch
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:iphone_os | apple iphone os | eq | 4.0 |
| apple:iphone_os | apple iphone os | eq | 4.0.1 |
References
Related
nvd
nvd
CVE-2010-2973
2010-08-05 18:17:58
prion
prion
Integer overflow
2010-08-05 18:17:00
cvelist
cvelist
CVE-2010-2973
2010-08-05 18:00:00
threatpost
threatpost
Apple Zaps JailbreakMe Bugs in Record Time
2010-08-11 19:43:56
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2010-2973