Lucene search
HistorySep 10, 2009 - 9:30 p.m.
CVE-2009-2815
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
6.1 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.6%
The Telephony component in Apple iPhone OS before 3.1 does not properly handle SMS arrival notifications, which allows remote attackers to cause a denial of service (NULL pointer dereference and service interruption) via a crafted SMS message.
Affected configurations
Node
appleiphone_osRange≤3.0.1
ORappleiphone_osMatch1.0
ORappleiphone_osMatch1.0.0
ORappleiphone_osMatch1.0.1
ORappleiphone_osMatch1.0.2
ORappleiphone_osMatch1.1
ORappleiphone_osMatch1.1.0
ORappleiphone_osMatch1.1.1
ORappleiphone_osMatch1.1.2
ORappleiphone_osMatch1.1.3
ORappleiphone_osMatch1.1.4
ORappleiphone_osMatch1.1.5
ORappleiphone_osMatch2.0
ORappleiphone_osMatch2.0.0
ORappleiphone_osMatch2.0.1
ORappleiphone_osMatch2.0.2
ORappleiphone_osMatch2.1
ORappleiphone_osMatch2.1.1
ORappleiphone_osMatch2.2
ORappleiphone_osMatch2.2.1
ORappleiphone_osMatch3.0
Related
cve
cve
CVE-2009-2815
2022-10-03 16:24:06
cvelist
cvelist
CVE-2009-2815
2022-10-03 16:24:06
prion
prion
Null pointer dereference
2009-09-10 21:30:00
seebug
seebug
Apple iPhone 3.1之前版本SMS消息NULL指针引用漏洞
2009-09-11 00:00:00
nessus
nessus
Apple iOS 3.x < 3.1 Multiple Vulnerabilities
2009-09-10 00:00:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
6.1 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.6%
Related for NVD:CVE-2009-2815