CVE-2010-2973

high

Description

Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.

References

http://www.securityfocus.com/bid/42151

http://support.apple.com/kb/HT4292

http://support.apple.com/kb/HT4291

http://secunia.com/advisories/40807

http://osvdb.org/66827

http://lists.apple.com/archives/security-announce/2010//Aug/msg00001.html

http://lists.apple.com/archives/security-announce/2010//Aug/msg00000.html

Details

Source: Mitre, NVD

Published: 2010-08-05

Updated: 2022-08-09

Risk Information

CVSS v2

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics