Apple iOS Data Security Certificate Chain Validation Security Vulnerability

Bugtraq ID: 48877
Class: Input Validation Error
CVE: CVE-2011-0228
Remote: Yes
Local: No
Published: Jul 25 2011 12:00AM
Updated: Jul 26 2011 04:00PM
Credit: Gregor Kopf of Recurity Labs on behalf of BSI, and Paul Kehrer of Trustwave's SpiderLab
Vulnerable: Apple iPod Touch 0
Apple iPhone 0
Apple iPad 0
Apple iOS 4.2.1
Apple iOS 4.0.2
Apple iOS 4.0.1
Apple iOS 3.2.2
Apple iOS 3.2.1
Apple iOS 4.3.4
Apple iOS 4.3.3
Apple iOS 4.3.2
Apple iOS 4.3.1
Apple iOS 4.3
Apple iOS 4.2.9
Apple iOS 4.2.8
Apple iOS 4.2.7
Apple iOS 4.2.6
Apple iOS 4.2.5
Apple iOS 4.2 beta
Apple iOS 4.2
Apple iOS 4.1
Apple iOS 4
Apple iOS 3.2
Apple iOS 3.1
Apple iOS 3.0
Not Vulnerable: Apple iOS 4.3.5
Apple iOS 4.2.10


 

Privacy Statement
Copyright 2010, SecurityFocus