CVE-2008-3876 - OpenCVE

Apple iPhone 2.0.2, in some configurations, allows physically proximate attackers to bypass intended access restrictions, and obtain sensitive information or make arbitrary use of the device, via an Emergency Call tap and a Home double-tap, followed by a tap of any contact's blue arrow.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:L/AC:M/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Apple	Iphone

Configuration 1 [-]

cpe:2.3:h:apple:iphone:2.0.2:*:*:*:*:*:*:*

References

Link	Resource
http://forums.macrumors.com/showpost.php?p=6121914&postcount=118
http://forums.macrumors.com/showthread.php?t=551617	Exploit
http://securitytracker.com/id?1020763

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2008-09-02T14:00:00

Updated: 2008-09-17T09:00:00

Reserved: 2008-09-02T00:00:00

Link: CVE-2008-3876

JSON object: View

NVD Information

Status : Modified

Published: 2008-09-02T14:24:00.000

Modified: 2008-09-17T05:35:28.040

Link: CVE-2008-3876

JSON object: View

Redhat Information

No data.

CWE

CWE-264

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-08-26T00:00:00", "descriptions": [{"lang": "en", "value": "Apple iPhone 2.0.2, in some configurations, allows physically proximate attackers to bypass intended access restrictions, and obtain sensitive information or make arbitrary use of the device, via an Emergency Call tap and a Home double-tap, followed by a tap of any contact's blue arrow."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2008-09-17T09:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://forums.macrumors.com/showpost.php?p=6121914&postcount=118"}, {"tags": ["x_refsource_MISC"], "url": "http://forums.macrumors.com/showthread.php?t=551617"}, {"name": "1020763", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1020763"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-3876", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Apple iPhone 2.0.2, in some configurations, allows physically proximate attackers to bypass intended access restrictions, and obtain sensitive information or make arbitrary use of the device, via an Emergency Call tap and a Home double-tap, followed by a tap of any contact's blue arrow."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://forums.macrumors.com/showpost.php?p=6121914&postcount=118", "refsource": "MISC", "url": "http://forums.macrumors.com/showpost.php?p=6121914&postcount=118"}, {"name": "http://forums.macrumors.com/showthread.php?t=551617", "refsource": "MISC", "url": "http://forums.macrumors.com/showthread.php?t=551617"}, {"name": "1020763", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1020763"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-3876", "datePublished": "2008-09-02T14:00:00", "dateReserved": "2008-09-02T00:00:00", "dateUpdated": "2008-09-17T09:00:00", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}