This script is Copyright (C) 2016-2024 and is owned by Tenable, Inc. or an Affiliate thereof.APPLE_IOS_100_CHECK.NBINApple iOS < 10 Multiple Vulnerabilities (BlueBorne)
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
79.9%
The version of iOS running on the mobile device is prior to 10. It is, therefore, affected by multiple vulnerabilities :
-
An access control issue exists in the Sandbox Profiles component in SMS draft directories that allows a local attacker to determine who a user is texting by using the ‘stat’ command on a directory. (CVE-2016-4620)
-
An unspecified permissions issue exists in PlaceData in the GeoServices component that allows a local attacker, via a crafted application, to disclose sensitive information. (CVE-2016-4719)
-
A flaw exists in the Messages component in the Handoff for Messages functionality due to incorrectly exposing messages even while signed out. A physically present attacker can exploit this to disclose sensitive information. (CVE-2016-4740)
-
A flaw exists in the Assets component due to updates being sent over unencrypted channels. A man-in-the-middle attacker can exploit this to block a device from receiving software updates. (CVE-2016-4741)
-
A flaw exists in the Keyboards component due to the Keyboard Autocorrect Suggestion feature inadvertently caching sensitive information. A physically present attacker can exploit this to disclose sensitive information. (CVE-2016-4746)
-
A flaw exists in the Mail component due to improper handling of untrusted certificates. A man-in-the-middle attacker can exploit this to disclose credential information. (CVE-2016-4747)
-
A flaw exists in the Printing UIKit component when writing an unencrypted document to a temporary file when using AirPrint preview. A local attacker can exploit this to disclose sensitive information. (CVE-2016-4749)
-
A flaw exists in the Springboard component due to cached application snapshots being displayed in the task switcher. A local attacker can exploit this to disclose sensitive information. (CVE-2016-7759)
-
A flaw exists related to the BlueTooth subsystem that could allow remote code execution as well as man-in-the-middle attacks. This issue is also known as ‘BlueBorne’.
Binary data apple_ios_100_check.nbinReferences
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4620
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4719
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4740
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4741
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4746
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4747
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4749
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7759
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14315
www.nessus.org/u?02739536
support.apple.com/en-us/HT207143
www.armis.com/blueborne/
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
79.9%