Details of VAR-201508-0040

ID

VAR-201508-0040

CVE

CVE-2015-5770

TITLE

Apple iOS of MobileInstallation Vulnerabilities that could replace arbitrary extensions

Trust: 0.8

sources: JVNDB: JVNDB-2015-004225

DESCRIPTION

MobileInstallation in Apple iOS before 8.4.1 does not ensure the uniqueness of universal provisioning profile bundle IDs, which allows attackers to replace arbitrary extensions via a crafted enterprise app. Apple iOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to access sensitive information, perform unauthorized actions, bypass security restrictions, and perform other attacks. Versions prior to iOS 8.4.1 are vulnerable. Note: The issue described by CVE-2015-3778 has been removed. The issue is discussed in BID 83590 (Apple Mac OS X and iOS CVE-2015-3778 Information Disclosure Vulnerability). Apple iOS is an operating system developed by Apple (Apple) for mobile devices. MobileInstallation is a necessary component to install AppStore cracked software

Trust: 1.98

sources: NVD: CVE-2015-5770 // JVNDB: JVNDB-2015-004225 // BID: 76337 // VULHUB: VHN-83731

AFFECTED PRODUCTS

vendor:	apple	model:	iphone os	scope:	lte	version:	8.4	Trust: 1.0
vendor:	apple	model:	ios	scope:	lt	version:	8.4.1 (ipad 2 or later )	Trust: 0.8
vendor:	apple	model:	ios	scope:	lt	version:	8.4.1 (iphone 4s or later )	Trust: 0.8
vendor:	apple	model:	ios	scope:	lt	version:	8.4.1 (ipod touch first 5 after generation )	Trust: 0.8
vendor:	apple	model:	iphone os	scope:	eq	version:	8.4	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	ipad	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.3	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.9	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.8	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.7	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.6	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.10	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.0	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	5.0	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.4	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.3	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.2	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.0	Trust: 0.3

sources: BID: 76337 // JVNDB: JVNDB-2015-004225 // CNNVD: CNNVD-201508-229 // NVD: CVE-2015-5770

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-5770
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2015-5770
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201508-229
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-83731
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2015-5770
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-83731
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-83731 // JVNDB: JVNDB-2015-004225 // CNNVD: CNNVD-201508-229 // NVD: CVE-2015-5770

PROBLEMTYPE DATA

problemtype:

CWE-264

Trust: 1.9

sources: VULHUB: VHN-83731 // JVNDB: JVNDB-2015-004225 // NVD: CVE-2015-5770

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201508-229

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201508-229

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-004225

PATCH

title:	Apple security updates	url:	http://support.apple.com/en-us/HT1222	Trust: 0.8
title:	APPLE-SA-2015-08-13-3 iOS 8.4.1	url:	http://lists.apple.com/archives/security-announce/2015/Aug/msg00002.html	Trust: 0.8
title:	HT205030	url:	http://support.apple.com/en-us/HT205030	Trust: 0.8
title:	HT205030	url:	http://support.apple.com/ja-jp/HT205030	Trust: 0.8

sources: JVNDB: JVNDB-2015-004225

EXTERNAL IDS

db:	NVD	id:	CVE-2015-5770	Trust: 2.8
db:	BID	id:	76337	Trust: 2.0
db:	SECTRACK	id:	1033275	Trust: 1.1
db:	JVN	id:	JVNVU94440136	Trust: 0.8
db:	JVNDB	id:	JVNDB-2015-004225	Trust: 0.8
db:	CNNVD	id:	CNNVD-201508-229	Trust: 0.7
db:	VULHUB	id:	VHN-83731	Trust: 0.1

sources: VULHUB: VHN-83731 // BID: 76337 // JVNDB: JVNDB-2015-004225 // CNNVD: CNNVD-201508-229 // NVD: CVE-2015-5770

REFERENCES

url:	http://lists.apple.com/archives/security-announce/2015/aug/msg00002.html	Trust: 1.7
url:	http://www.securityfocus.com/bid/76337	Trust: 1.7
url:	https://support.apple.com/kb/ht205030	Trust: 1.7
url:	http://www.securitytracker.com/id/1033275	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-5770	Trust: 0.8
url:	http://jvn.jp/vu/jvnvu94440136/index.html	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-5770	Trust: 0.8
url:	http://www.apple.com/ios/	Trust: 0.3
url:	http://www.apple.com/ipad/	Trust: 0.3
url:	http://www.apple.com/iphone/	Trust: 0.3
url:	http://www.apple.com/ipodtouch/	Trust: 0.3

sources: VULHUB: VHN-83731 // BID: 76337 // JVNDB: JVNDB-2015-004225 // CNNVD: CNNVD-201508-229 // NVD: CVE-2015-5770

CREDITS

evad3rs, TaiG Jailbreak Team, Cererdlong of Alibaba Mobile Security Team, Phillip Moon and Matt Weston of Sandfield, TaiG Jailbreak Team, FireEye, Proteas of Qihoo 360 Nirvan Team, Piers O'Hanlon of Oxford Internet Institute, University of Oxford (on the

Trust: 0.6

sources: CNNVD: CNNVD-201508-229

SOURCES

db:	VULHUB	id:	VHN-83731
db:	BID	id:	76337
db:	JVNDB	id:	JVNDB-2015-004225
db:	CNNVD	id:	CNNVD-201508-229
db:	NVD	id:	CVE-2015-5770

LAST UPDATE DATE

2025-04-13T20:40:15.816000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-83731	date:	2016-12-24T00:00:00
db:	BID	id:	76337	date:	2016-07-05T21:35:00
db:	JVNDB	id:	JVNDB-2015-004225	date:	2015-08-20T00:00:00
db:	CNNVD	id:	CNNVD-201508-229	date:	2015-08-21T00:00:00
db:	NVD	id:	CVE-2015-5770	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-83731	date:	2015-08-17T00:00:00
db:	BID	id:	76337	date:	2015-08-13T00:00:00
db:	JVNDB	id:	JVNDB-2015-004225	date:	2015-08-20T00:00:00
db:	CNNVD	id:	CNNVD-201508-229	date:	2015-08-19T00:00:00
db:	NVD	id:	CVE-2015-5770	date:	2015-08-17T00:00:51.267