CVE-2011-3430

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2011-3430
The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display.

9.3 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
http://osvdb.org/76330
http://support.apple.com/kb/HT4999
https://exchange.xforce.ibmcloud.com/vulnerabilities/70560
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:iphone_os:3.0:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.1:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.1:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.1.2:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.1.3:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.2:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.2:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.2.1:-:ipad:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.2.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0.1:-:iphone:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0.1:-:ipodtouch:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.2.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.2.8:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.3.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.3.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.3.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.3.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.3.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.3.5:-:ipad:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.3.5:-:ipodtouch:*:*:*:*:*
History

No history.

Information

Published : 2011-10-14 10:55

Updated : 2023-12-10 11:03

NVD link : CVE-2011-3430

Mitre link : CVE-2011-3430

CVE.ORG link : CVE-2011-3430

JSON object : View

Products Affected

apple

  • iphone_os
CWE
NVD-CWE-Other