CVE-2010-1754

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 22-06-2010 10:30

Last modified: - 09-08-2022 03:46

Total changes: - 2

Description

Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch does not properly handle alert-based unlocks in conjunction with subsequent Remote Lock operations through MobileMe, which allows physically proximate attackers to bypass intended passcode requirements via unspecified vectors.

Common Vulnerability Scoring System (CVSS)

AV:L/AC:M/Au:N/C:C/I:C/A:C

Low

Attack complexity

Local

Attack vector

High

Availability

High

Confidentiality

High

Integrity

Privileges required

Scope

User interaction

6.9

Base score

3.4

10.0

Exploitability score

Impact score

Verification logic

Reference

41016-Third Party Advisory, VDB Entry
http://support.apple.com/kb/HT4225
APPLE-SA-2010-06-21-1-Mailing List, Vendor Advisory
appleios-passcodelock-security-bypass(59633)-Third Party Advisory, VDB Entry

Keywords

CVE-2010-1754

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2010-1754

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures