Details of VAR-201011-0052

ID

VAR-201011-0052

CVE

CVE-2010-3830

TITLE

Apple iOS of Networking Elevation of privilege vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2010-002523

DESCRIPTION

Networking in Apple iOS before 4.2 accesses an invalid pointer during the processing of packet filter rules, which allows local users to gain privileges via unspecified vectors. Apple iOS is prone to a local privilege-escalation vulnerability. Local attackers running malicious code can exploit this issue to elevate their privileges. Successful attacks will completely compromise an affected device. Local users gain privileges through unidentified vectors. ---------------------------------------------------------------------- Secure your corporate defenses and reduce complexity in handling vulnerability threats with the new Secunia Vulnerability Intelligence Manager (VIM). Request a free trial: http://secunia.com/products/corporate/vim/ ---------------------------------------------------------------------- TITLE: Apple iOS Multiple Vulnerabilities SECUNIA ADVISORY ID: SA42314 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/42314/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=42314 RELEASE DATE: 2010-11-24 DISCUSS ADVISORY: http://secunia.com/advisories/42314/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/42314/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=42314 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: Multiple vulnerabilities have been reported in Apple iOS, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, disclose sensitive information, bypass certain security restrictions, or to compromise a user's system. For more information: SA40257 SA41328 SA42151 SA42312 SOLUTION: Upgrade to iOS 4.2 (downloadable and installable via iTunes). ORIGINAL ADVISORY: Apple: http://support.apple.com/kb/HT4456 OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXPLOIT: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.07

sources: NVD: CVE-2010-3830 // JVNDB: JVNDB-2010-002523 // BID: 45010 // VULHUB: VHN-46435 // PACKETSTORM: 96086

AFFECTED PRODUCTS

vendor:	apple	model:	iphone os	scope:	eq	version:	3.2.1	Trust: 1.6
vendor:	apple	model:	iphone os	scope:	eq	version:	4.0	Trust: 1.6
vendor:	apple	model:	iphone os	scope:	eq	version:	4.0.1	Trust: 1.6
vendor:	apple	model:	iphone os	scope:	eq	version:	4.0.2	Trust: 1.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.1.3	Trust: 1.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.2.2	Trust: 1.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.2	Trust: 1.6
vendor:	apple	model:	iphone os	scope:	eq	version:	2.0	Trust: 1.6
vendor:	apple	model:	iphone os	scope:	eq	version:	3.1.2	Trust: 1.6
vendor:	apple	model:	iphone os	scope:	eq	version:	1.0.0	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	2.2.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	2.2	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	2.0.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	1.1.3	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	lte	version:	4.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	2.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	1.0.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	2.0.2	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	1.1.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	3.0	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	1.1.4	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	3.0.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	1.1.5	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	2.1.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	3.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	1.1.0	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	1.0.2	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	1.1.2	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	eq	version:	2.0.0	Trust: 1.0
vendor:	apple	model:	ios	scope:	eq	version:	2.0 to 4.1 (iphone 3g after )	Trust: 0.8
vendor:	apple	model:	ios	scope:	eq	version:	2.1 to 4.1 (ipod touch (2nd generation) after )	Trust: 0.8
vendor:	apple	model:	ios	scope:	eq	version:	3.2 to 3.2.2 (ipad for )	Trust: 0.8
vendor:	apple	model:	ipad	scope:	-	version:	-	Trust: 0.8
vendor:	apple	model:	iphone	scope:	-	version:	-	Trust: 0.8
vendor:	apple	model:	ipod touch	scope:	-	version:	-	Trust: 0.8
vendor:	apple	model:	iphone os	scope:	eq	version:	4.1	Trust: 0.6
vendor:	apple	model:	ios	scope:	eq	version:	4.0.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	2.0	Trust: 0.3
vendor:	apple	model:	ios	scope:	ne	version:	4.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	ne	version:	4.2	Trust: 0.3

sources: BID: 45010 // JVNDB: JVNDB-2010-002523 // CNNVD: CNNVD-201011-252 // NVD: CVE-2010-3830

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2010-3830
value:	HIGH
Trust: 1.0
NVD:	CVE-2010-3830
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201011-252
value:	HIGH
Trust: 0.6
VULHUB:	VHN-46435
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2010-3830
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-46435
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-46435 // JVNDB: JVNDB-2010-002523 // CNNVD: CNNVD-201011-252 // NVD: CVE-2010-3830

PROBLEMTYPE DATA

problemtype:

CWE-264

Trust: 1.9

sources: VULHUB: VHN-46435 // JVNDB: JVNDB-2010-002523 // NVD: CVE-2010-3830

THREAT TYPE

local

Trust: 0.9

sources: BID: 45010 // CNNVD: CNNVD-201011-252

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201011-252

CONFIGURATIONS

sources: JVNDB: JVNDB-2010-002523

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-46435

PATCH

title:

HT4456

url:

http://support.apple.com/kb/HT4456

Trust: 0.8

sources: JVNDB: JVNDB-2010-002523

EXTERNAL IDS

db:	NVD	id:	CVE-2010-3830	Trust: 2.8
db:	SECUNIA	id:	42314	Trust: 2.0
db:	VUPEN	id:	ADV-2010-3046	Trust: 1.9
db:	SECTRACK	id:	1024772	Trust: 1.9
db:	XF	id:	63419	Trust: 0.8
db:	JVNDB	id:	JVNDB-2010-002523	Trust: 0.8
db:	APPLE	id:	APPLE-SA-2010-11-22-1	Trust: 0.6
db:	CNNVD	id:	CNNVD-201011-252	Trust: 0.6
db:	BID	id:	45010	Trust: 0.4
db:	EXPLOIT-DB	id:	35010	Trust: 0.1
db:	VULHUB	id:	VHN-46435	Trust: 0.1
db:	PACKETSTORM	id:	96086	Trust: 0.1

sources: VULHUB: VHN-46435 // BID: 45010 // JVNDB: JVNDB-2010-002523 // PACKETSTORM: 96086 // CNNVD: CNNVD-201011-252 // NVD: CVE-2010-3830

REFERENCES

url:	http://www.securitytracker.com/id?1024772	Trust: 1.9
url:	http://secunia.com/advisories/42314	Trust: 1.9
url:	http://www.vupen.com/english/advisories/2010/3046	Trust: 1.9
url:	http://support.apple.com/kb/ht4456	Trust: 1.8
url:	http://lists.apple.com/archives/security-announce/2010//nov/msg00003.html	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/63419	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-3830	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/63419	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-3830	Trust: 0.8
url:	http://www.apple.com	Trust: 0.3
url:	http://www.apple.com/iphone/softwareupdate/	Trust: 0.3
url:	http://esec-lab.sogeti.com/dotclear/index.php?post/2010/12/09/cve-2010-3830-ios-4.2.1-packet-filter-local-kernel-vulnerability	Trust: 0.3
url:	http://secunia.com/products/corporate/evm/	Trust: 0.1
url:	http://secunia.com/advisories/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/	Trust: 0.1
url:	http://secunia.com/advisories/42314/	Trust: 0.1
url:	http://secunia.com/products/corporate/vim/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/personal/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://secunia.com/advisories/42314/#comments	Trust: 0.1
url:	https://ca.secunia.com/?page=viewadvisory&vuln_id=42314	Trust: 0.1
url:	http://secunia.com/advisories/about_secunia_advisories/	Trust: 0.1

sources: VULHUB: VHN-46435 // BID: 45010 // JVNDB: JVNDB-2010-002523 // PACKETSTORM: 96086 // CNNVD: CNNVD-201011-252 // NVD: CVE-2010-3830

CREDITS

Apple

Trust: 0.3

sources: BID: 45010

SOURCES

db:	VULHUB	id:	VHN-46435
db:	BID	id:	45010
db:	JVNDB	id:	JVNDB-2010-002523
db:	PACKETSTORM	id:	96086
db:	CNNVD	id:	CNNVD-201011-252
db:	NVD	id:	CVE-2010-3830

LAST UPDATE DATE

2025-04-11T21:15:37.802000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-46435	date:	2017-08-17T00:00:00
db:	BID	id:	45010	date:	2010-12-31T07:33:00
db:	JVNDB	id:	JVNDB-2010-002523	date:	2010-12-20T00:00:00
db:	CNNVD	id:	CNNVD-201011-252	date:	2010-11-30T00:00:00
db:	NVD	id:	CVE-2010-3830	date:	2025-04-11T00:51:21.963

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-46435	date:	2010-11-26T00:00:00
db:	BID	id:	45010	date:	2010-11-22T00:00:00
db:	JVNDB	id:	JVNDB-2010-002523	date:	2010-12-20T00:00:00
db:	PACKETSTORM	id:	96086	date:	2010-11-24T11:53:31
db:	CNNVD	id:	CNNVD-201011-252	date:	2010-11-30T00:00:00
db:	NVD	id:	CVE-2010-3830	date:	2010-11-26T20:00:03.110