Apple iOS for iPhone and iPod touch Multiple Vulnerabilities
RISK: Medium Risk
Multiple vulnerabilities have been identified in Apple iOS for iPhone and iPod touch, which could be exploited by attackers to disclose sensitive information, bypass security restrictions or compromise an affected system. These issues are caused by errors in VoiceOver, FaceTime, ImageIO, and WebKit, which could cause an application's use of location services to not be announced, or could allow attackers to redirect FaceTime calls, change the contents of the clipboard, disclose sensitive information, or execute arbitrary code.
Impact
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- Apple iOS versions 2.0 through 4.0.2 for iPhone
Apple iOS versions 2.1 through 4.0.2 for iPod touch
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Upgrade to Apple iOS version 4.1 via iTunes :
http://support.apple.com/kb/HT4334
Vulnerability Identifier
- CVE-2010-1421
- CVE-2010-1422
- CVE-2010-1764
- CVE-2010-1770
- CVE-2010-1771
- CVE-2010-1780
- CVE-2010-1781
- CVE-2010-1782
- CVE-2010-1783
- CVE-2010-1784
- CVE-2010-1785
- CVE-2010-1786
- CVE-2010-1787
- CVE-2010-1788
- CVE-2010-1791
- CVE-2010-1793
- CVE-2010-1809
- CVE-2010-1810
- CVE-2010-1811
- CVE-2010-1812
- CVE-2010-1813
- CVE-2010-1814
- CVE-2010-1815
- CVE-2010-1817
Source
Related Link
Share with