Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4593

Overview

Vulnerability Score 1.2 1.2
CVE Id CVE-2008-4593
Last Modified 22 Jul 2009 12:00:00
Published 17 Oct 2008 04:33:55
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2008-4593

Summary

Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled and Show SMS Preview is disabled, allows physically proximate attackers to obtain sensitive information by performing an Emergency Call tap and then reading SMS messages on the device screen, aka Apple bug number 6267416.

Vulnerable Systems


References

XF - apple-iphone-sms-info-disclosure(46062)

MISC - http://www.karlkraft.com/index.php/2008/10/03/yet-another-iphone-emergency-call-security-bug/

SECTRACK - 1021021


Last Updated: 27 May 2016 10:48:33