Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3631

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2008-3631
Last Modified 07 Mar 2011 10:11:04
Published 10 Sep 2008 09:13:09
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3631

Summary

Application Sandbox in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, does not properly isolate third-party applications, which allows attackers to read arbitrary files in a third-party application's sandbox via a different third-party application.

Vulnerable Systems


References

VUPEN - ADV-2008-2558

VUPEN - ADV-2008-2525

SECTRACK - 1020846

BID - 31092

CONFIRM - http://support.apple.com/kb/HT3129

CONFIRM - http://support.apple.com/kb/HT3026

SECUNIA - 31900

SECUNIA - 31823

APPLE - APPLE-SA-2008-09-12

APPLE - APPLE-SA-2008-09-09


Last Updated: 27 May 2016 10:48:15