RETIRED: Apple iPhone/iPad/iPod touch Prior to iOS 6 Multiple Vulnerabilities

Apple iOS for the iPhone, the iPod touch, and the iPad is prone to multiple security vulnerabilities. These issues affect the following components:

CFNetwork
CoreMedia
DHCP
ImageIO
IPSec
Kernel
Mail
Messages
Office Viewer
Passcode Lock
Restrictions
Safari
System Logs
Telephony
UIKit
WebKit

Successfully exploiting these issues may allow attackers to crash the affected device, bypass security restrictions, obtain sensitive information, or execute arbitrary code. Other attacks are also possible.

This BID is being retired. The following individual records exist to better document the issues:

56275 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3737 Security Weakness
56270 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3735 Security Weakness
56269 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3734 Local Information Disclosure Vulnerability
56279 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3732 'From' Address Spoofing Vulnerability
56277 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3742 Secure Site Spoofing Vulnerability
56276 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3738 Security Weakness
56274 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3739 Security Bypass Vulnerability
56273 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3725 Information Disclosure Vulnerability
56272 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3729 Information Disclosure Vulnerability
56271 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3736 Security Bypass Vulnerability
56268 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3722 Remote Code Execution Vulnerability
56264 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3726 Remote Code Execution Vulnerability
56265 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3724 Information Disclosure Vulnerability
56267 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3733 Information Disclosure Vulnerability
56261 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3745 Off-By-One Buffer-Overflow Vulnerability
56260 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3741 Security Bypass Vulnerability
56259 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3743 Information Disclosure Vulnerability
56253 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3746 Information Disclosure Vulnerability
56257 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3740 Security Bypass Vulnerability
56251 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3731 Security Bypass Vulnerability
56255 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3728 Local Privilege Escalation Vulnerability
56250 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3727 Buffer Overflow Vulnerability
56296 Apple iPhone/iPad/iPod touch Prior to iOS 6 CVE-2012-3730 Security Bypass Vulnerability
55087 Apple iOS SMS Spoofing Vulnerability
56254 WebKit CVE-2012-3747 Unspecified Remote Code Execution Vulnerability


 

Privacy Statement
Copyright 2010, SecurityFocus