Details of VAR-201006-0311

ID

VAR-201006-0311

CVE

CVE-2010-1751

TITLE

Apple iOS of Application Sandbox Vulnerability in obtaining location information

Trust: 0.8

sources: JVNDB: JVNDB-2010-001674

DESCRIPTION

Application Sandbox in Apple iOS before 4 on the iPhone and iPod touch does not prevent photo-library access, which might allow remote attackers to obtain location information via unspecified vectors. These issues affect the Sandbox, CFNetwork, ImageIO, Passcode Lock, Safari, Settings, and WebKit components. Successfully exploiting these issues may allow attackers to crash the affected device, bypass security restrictions, obtain sensitive information, or execute arbitrary code. Other attacks are also possible. Versions prior to iOS 4 are vulnerable. This BID is being retired. An attacker can exploit this issue to bypass certain security restrictions. Apple iOS is an operating system developed by Apple Inc. for the iPhone. It is mainly used for iPhone, iPod touch and iPad

Trust: 2.25

sources: NVD: CVE-2010-1751 // JVNDB: JVNDB-2010-001674 // BID: 41016 // BID: 41047 // VULHUB: VHN-44356

AFFECTED PRODUCTS

vendor:	apple	model:	iphone os	scope:	lt	version:	4.0	Trust: 1.0
vendor:	apple	model:	ios	scope:	eq	version:	2.0 to 3.1.3	Trust: 0.8
vendor:	apple	model:	ios for ipod touch	scope:	eq	version:	2.1 to 3.1.3	Trust: 0.8
vendor:	apple	model:	iphone	scope:	-	version:	-	Trust: 0.8
vendor:	apple	model:	ipod touch	scope:	-	version:	-	Trust: 0.8
vendor:	apple	model:	ipod touch	scope:	eq	version:	3.1.3	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	3.1.2	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	3.1.1	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.2.1	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.0.2	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.0.1	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	3.0	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.2	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.1	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.0	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	3.1.3	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	3.1.2	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	3.0.1	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	2.2.1	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	2.0.2	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	2.0.1	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	3.1	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	3.0	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	2.2	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	2.1	Trust: 0.6
vendor:	apple	model:	iphone	scope:	eq	version:	2.0	Trust: 0.6
vendor:	apple	model:	ios	scope:	ne	version:	4	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	2.2	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.0.1	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.0	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	2.1	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	2.0.2	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.2	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.1	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	2.2.1	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.1.3	Trust: 0.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.1.2	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	0	Trust: 0.3

sources: BID: 41016 // BID: 41047 // JVNDB: JVNDB-2010-001674 // CNNVD: CNNVD-201006-361 // NVD: CVE-2010-1751

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2010-1751
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2010-1751
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201006-361
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-44356
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2010-1751
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-44356
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-44356 // JVNDB: JVNDB-2010-001674 // CNNVD: CNNVD-201006-361 // NVD: CVE-2010-1751

PROBLEMTYPE DATA

problemtype:

CWE-264

Trust: 1.9

sources: VULHUB: VHN-44356 // JVNDB: JVNDB-2010-001674 // NVD: CVE-2010-1751

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201006-361

TYPE

permissions and access control issues

Trust: 0.6

sources: CNNVD: CNNVD-201006-361

CONFIGURATIONS

sources: JVNDB: JVNDB-2010-001674

PATCH

title:	HT4225	url:	http://support.apple.com/kb/HT4225	Trust: 0.8
title:	HT4225	url:	http://support.apple.com/kb/HT4225?viewlocale=ja_JP	Trust: 0.8
title:	Apple iOS Application Sandbox Fixes for permissions and access control issues vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=203163	Trust: 0.6

sources: JVNDB: JVNDB-2010-001674 // CNNVD: CNNVD-201006-361

EXTERNAL IDS

db:	NVD	id:	CVE-2010-1751	Trust: 2.8
db:	BID	id:	41016	Trust: 2.0
db:	XF	id:	59630	Trust: 0.8
db:	JVNDB	id:	JVNDB-2010-001674	Trust: 0.8
db:	CNNVD	id:	CNNVD-201006-361	Trust: 0.7
db:	BID	id:	41047	Trust: 0.4
db:	VULHUB	id:	VHN-44356	Trust: 0.1

sources: VULHUB: VHN-44356 // BID: 41016 // BID: 41047 // JVNDB: JVNDB-2010-001674 // CNNVD: CNNVD-201006-361 // NVD: CVE-2010-1751

REFERENCES

url:	http://lists.apple.com/archives/security-announce/2010/jun/msg00003.html	Trust: 1.7
url:	http://www.securityfocus.com/bid/41016	Trust: 1.7
url:	http://support.apple.com/kb/ht4225	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/59630	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1751	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/59630	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-1751	Trust: 0.8
url:	http://www.apple.com/iphone/softwareupdate/	Trust: 0.3
url:	http://www.apple.com/iphone/	Trust: 0.3
url:	http://www.apple.com/ipodtouch/	Trust: 0.3
url:	http://software.cisco.com/download/navigator.html?mdfid=283613663	Trust: 0.3

sources: VULHUB: VHN-44356 // BID: 41016 // BID: 41047 // JVNDB: JVNDB-2010-001674 // CNNVD: CNNVD-201006-361 // NVD: CVE-2010-1751

CREDITS

Zac White; Laurent OUDOT of TEHTRI-Security; Ladd Van Tol of Critical Path Software; Apple; Jason Dent of Street Side Software; Sidney San Martin of DeepTech, Inc.; Wilfried Teiken; Darin Fisher of Google Inc.; Wayne Pan of AdMob, Inc.; wushi of team509.

Trust: 0.3

sources: BID: 41016

SOURCES

db:	VULHUB	id:	VHN-44356
db:	BID	id:	41016
db:	BID	id:	41047
db:	JVNDB	id:	JVNDB-2010-001674
db:	CNNVD	id:	CNNVD-201006-361
db:	NVD	id:	CVE-2010-1751

LAST UPDATE DATE

2024-11-23T20:53:19.887000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-44356	date:	2018-11-16T00:00:00
db:	BID	id:	41016	date:	2010-06-23T16:08:00
db:	BID	id:	41047	date:	2010-06-22T21:28:00
db:	JVNDB	id:	JVNDB-2010-001674	date:	2010-07-14T00:00:00
db:	CNNVD	id:	CNNVD-201006-361	date:	2022-08-10T00:00:00
db:	NVD	id:	CVE-2010-1751	date:	2024-11-21T01:15:07.403

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-44356	date:	2010-06-22T00:00:00
db:	BID	id:	41016	date:	2010-06-21T00:00:00
db:	BID	id:	41047	date:	2010-06-21T00:00:00
db:	JVNDB	id:	JVNDB-2010-001674	date:	2010-07-14T00:00:00
db:	CNNVD	id:	CNNVD-201006-361	date:	2010-06-24T00:00:00
db:	NVD	id:	CVE-2010-1751	date:	2010-06-22T20:30:01.523