Sign-up

ID

VAR-201501-0277


CVE

CVE-2014-8840


TITLE

Apple iOS of iTunes Store In the component Safari Vulnerability bypassing sandbox protection mechanisms

Trust: 0.8

sources: JVNDB: JVNDB-2015-001306

DESCRIPTION

The iTunes Store component in Apple iOS before 8.1.3 allows remote attackers to bypass a Safari sandbox protection mechanism by leveraging redirection of an SSL URL to the iTunes Store. This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Apple iOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the handling of SSL connections. The issue lies in the implicit trust of sites that offer URL redirection services. An attacker can leverage this vulnerability to execute code outside the context of the sandbox. Apple iOS is prone to multiple security vulnerabilities. The update addresses new vulnerabilities that affect iTunes Store, MobileInstallation, Springboard, and WebKit components. Attackers can exploit these issues to gain unauthorized access, perform unauthorized actions, bypass security restrictions, and perform other attacks. These issues affect iOS versions prior to 8.1.3. Apple iOS is an operating system developed by Apple (Apple) for mobile devices

Trust: 2.61

sources: NVD: CVE-2014-8840 // JVNDB: JVNDB-2015-001306 // ZDI: ZDI-15-010 // BID: 72333 // VULHUB: VHN-76785

AFFECTED PRODUCTS

vendor:applemodel:iphone osscope:lteversion:8.1.2

Trust: 1.0

vendor:applemodel:iosscope:ltversion:8.1.3 (ipad 2 or later )

Trust: 0.8

vendor:applemodel:iosscope:ltversion:8.1.3 (iphone 4s or later )

Trust: 0.8

vendor:applemodel:iosscope:ltversion:8.1.3 (ipod touch first 5 after generation )

Trust: 0.8

vendor:applemodel:iosscope: - version: -

Trust: 0.7

vendor:applemodel:iphone osscope:eqversion:8.1.2

Trust: 0.6

vendor:applemodel:ipod touchscope:eqversion:0

Trust: 0.3

vendor:applemodel:iphonescope:eqversion:0

Trust: 0.3

vendor:applemodel:ipadscope:eqversion:0

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.2.1

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.0.2

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.0.1

Trust: 0.3

vendor:applemodel:iosscope:eqversion:3.2.2

Trust: 0.3

vendor:applemodel:iosscope:eqversion:3.2.1

Trust: 0.3

vendor:applemodel:iosscope:eqversion:5.1.1

Trust: 0.3

vendor:applemodel:iosscope:eqversion:5.1

Trust: 0.3

vendor:applemodel:iosscope:eqversion:5.0.1

Trust: 0.3

vendor:applemodel:iosscope:eqversion:5

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.3.5

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.3.4

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.3.3

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.3.2

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.3.1

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.3

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.2.9

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.2.8

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.2.7

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.2.6

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.2.5

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.2.10

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.2

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4.1

Trust: 0.3

vendor:applemodel:iosscope:eqversion:4

Trust: 0.3

vendor:applemodel:iosscope:eqversion:3.2

Trust: 0.3

vendor:applemodel:iosscope:eqversion:3.1

Trust: 0.3

vendor:applemodel:iosscope:eqversion:3.0

Trust: 0.3

sources: ZDI: ZDI-15-010 // BID: 72333 // JVNDB: JVNDB-2015-001306 // CNNVD: CNNVD-201501-712 // NVD: CVE-2014-8840

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2014-8840
value: MEDIUM

Trust: 1.0

NVD: CVE-2014-8840
value: MEDIUM

Trust: 0.8

ZDI: CVE-2014-8840
value: HIGH

Trust: 0.7

CNNVD: CNNVD-201501-712
value: MEDIUM

Trust: 0.6

VULHUB: VHN-76785
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2014-8840
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

ZDI: CVE-2014-8840
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.7

VULHUB: VHN-76785
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: ZDI: ZDI-15-010 // VULHUB: VHN-76785 // JVNDB: JVNDB-2015-001306 // CNNVD: CNNVD-201501-712 // NVD: CVE-2014-8840

PROBLEMTYPE DATA

problemtype:CWE-310

Trust: 1.9

sources: VULHUB: VHN-76785 // JVNDB: JVNDB-2015-001306 // NVD: CVE-2014-8840

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201501-712

TYPE

encryption problem

Trust: 0.6

sources: CNNVD: CNNVD-201501-712

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-001306

PATCH
title:HT204245url:http://support.apple.com/en-us/HT204245
Trust: 1.5
title:APPLE-SA-2015-01-27-2url:http://lists.apple.com/archives/security-announce/2015/Jan/msg00001.html
Trust: 0.8
title:HT204245url:http://support.apple.com/ja-jp/HT204245
Trust: 0.8
title:osxupd10.10.2url:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=53587
Trust: 0.6
title:iPhone7,1_8.1.3_12B466_Restoreurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=53586
Trust: 0.6
sources:
            
            
            ZDI: ZDI-15-010 // 
            
            
            
            JVNDB: JVNDB-2015-001306 // 
            
            
            
            CNNVD: CNNVD-201501-712

EXTERNAL IDS
db:NVDid:CVE-2014-8840
Trust: 3.5
db:ZDIid:ZDI-15-010
Trust: 2.4
db:SECTRACKid:1031652
Trust: 1.1
db:BIDid:72333
Trust: 0.9
db:JVNid:JVNVU96447236
Trust: 0.8
db:JVNDBid:JVNDB-2015-001306
Trust: 0.8
db:ZDI_CANid:ZDI-CAN-2612
Trust: 0.7
db:CNNVDid:CNNVD-201501-712
Trust: 0.7
db:VULHUBid:VHN-76785
Trust: 0.1
sources:
            
            
            ZDI: ZDI-15-010 // 
            
            
            
            VULHUB: VHN-76785 // 
            
            
            
            BID: 72333 // 
            
            
            
            JVNDB: JVNDB-2015-001306 // 
            
            
            
            CNNVD: CNNVD-201501-712 // 
            
            
            
            NVD: CVE-2014-8840

REFERENCES
url:http://lists.apple.com/archives/security-announce/2015/jan/msg00001.html
Trust: 1.7
url:http://support.apple.com/ht204245
Trust: 1.7
url:http://zerodayinitiative.com/advisories/zdi-15-010/
Trust: 1.7
url:http://www.securitytracker.com/id/1031652
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/100533
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-8840
Trust: 0.8
url:http://jvn.jp/vu/jvnvu96447236/index.html
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-8840
Trust: 0.8
url:http://support.apple.com/en-us/ht204245
Trust: 0.7
url:http://www.securityfocus.com/bid/72333
Trust: 0.6
url:http://www.apple.com/ios/
Trust: 0.3
url:http://www.apple.com/ipad/
Trust: 0.3
url:http://www.apple.com/iphone/
Trust: 0.3
url:http://www.apple.com/ipodtouch/
Trust: 0.3
sources:
            
            
            ZDI: ZDI-15-010 // 
            
            
            
            VULHUB: VHN-76785 // 
            
            
            
            BID: 72333 // 
            
            
            
            JVNDB: JVNDB-2015-001306 // 
            
            
            
            CNNVD: CNNVD-201501-712 // 
            
            
            
            NVD: CVE-2014-8840

CREDITS
lokihardt@ASRT working with HP's Zero Day Initiative , Jordan Milne, Song Jin, Hui Xue, and Tao Wei of FireEye, Inc.
Trust: 0.9
sources:
            
            
            BID: 72333 // 
            
            
            
            CNNVD: CNNVD-201501-712

SOURCES
db:ZDIid:ZDI-15-010
db:VULHUBid:VHN-76785
db:BIDid:72333
db:JVNDBid:JVNDB-2015-001306
db:CNNVDid:CNNVD-201501-712
db:NVDid:CVE-2014-8840

LAST UPDATE DATE
2025-04-13T20:12:52.038000+00:00

SOURCES UPDATE DATE
db:ZDIid:ZDI-15-010date:2015-01-27T00:00:00
db:VULHUBid:VHN-76785date:2017-09-08T00:00:00
db:BIDid:72333date:2015-02-04T00:01:00
db:JVNDBid:JVNDB-2015-001306date:2015-02-12T00:00:00
db:CNNVDid:CNNVD-201501-712date:2015-02-02T00:00:00
db:NVDid:CVE-2014-8840date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:ZDIid:ZDI-15-010date:2015-01-27T00:00:00
db:VULHUBid:VHN-76785date:2015-01-30T00:00:00
db:BIDid:72333date:2015-01-27T00:00:00
db:JVNDBid:JVNDB-2015-001306date:2015-02-12T00:00:00
db:CNNVDid:CNNVD-201501-712date:2015-01-27T00:00:00
db:NVDid:CVE-2014-8840date:2015-01-30T11:59:49.470