Apple iOS < 4.3 Multiple Vulnerabilities

critical Nessus Network Monitor Plugin ID 5814

Synopsis

The remote host is missing a critical Apple iOS patch update.

Description

The remote mobile host is a using a version of Apple iOS earlier than 4.3. Such versions are potentially affected by multiple vulnerabilities. Apple iOS 4.3 contains security fixes for the following components :

- CoreGraphics

- ImageIO

- libxml

- Networking

- Safari

- WebKit

- Wi-Fi

Solution

Upgrade to Apple iOS 4.3 or later.

See Also

http://support.apple.com/kb/HT4564

http://lists.apple.com/archives/security-announce/2011/Mar/msg00003.html

Plugin Details

Severity: Critical

ID: 5814

Published: 3/10/2011

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:apple:iphone_os

Patch Publication Date: 3/9/2011

Vulnerability Publication Date: 3/9/2011

Reference Information

CVE: CVE-2010-1792, CVE-2010-1824, CVE-2010-3855, CVE-2010-4494, CVE-2011-0111, CVE-2011-0112, CVE-2011-0113, CVE-2011-0114, CVE-2011-0115, CVE-2011-0116, CVE-2011-0117, CVE-2011-0118, CVE-2011-0119, CVE-2011-0120, CVE-2011-0121, CVE-2011-0122, CVE-2011-0123, CVE-2011-0124, CVE-2011-0125, CVE-2011-0126, CVE-2011-0127, CVE-2011-0128, CVE-2011-0129, CVE-2011-0130, CVE-2011-0131, CVE-2011-0132, CVE-2011-0133, CVE-2011-0134, CVE-2011-0135, CVE-2011-0136, CVE-2011-0137, CVE-2011-0138, CVE-2011-0140, CVE-2011-0141, CVE-2011-0142, CVE-2011-0143, CVE-2011-0144, CVE-2011-0145, CVE-2011-0146, CVE-2011-0147, CVE-2011-0148, CVE-2011-0149, CVE-2011-0150, CVE-2011-0151, CVE-2011-0152, CVE-2011-0153, CVE-2011-0154, CVE-2011-0155, CVE-2011-0156, CVE-2011-0157, CVE-2011-0158, CVE-2011-0159, CVE-2011-0160, CVE-2011-0161, CVE-2011-0162, CVE-2011-0163, CVE-2011-0168, CVE-2011-0191, CVE-2011-0192

BID: 42042, 46677, 44214, 45617, 46657, 46658, 46684, 46686, 46687, 46688, 46689, 46690, 46691, 46692, 46693, 46694, 46695, 46696, 46698, 46699, 46700, 46701, 46702, 46704, 46705, 46706, 46707, 46708, 46709, 46710, 46711, 46713, 46714, 46715, 46717, 46718, 46719, 46720, 46721, 46722, 46723, 46724, 46725, 46726, 46727, 46728, 46744, 46745, 46746, 46747, 46748, 46749, 46806, 46807, 46810, 46813, 46814, 46815