CVE-2008-3612

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Apple iPod touch versions 2.0 through 2.0.2 Apple iPhone versions 2.0 through 2.0.2

Description The issue is related to the Networking subsystem, which uses predictable TCP initial sequence numbers. This allows remote attackers to potentially spoof or hijack a TCP connection.

Recommendations For Apple iPod touch versions 2.0 through 2.0.2, update to a version that addresses the predictable TCP initial sequence number issue. For Apple iPhone versions 2.0 through 2.0.2, update to a version that addresses the predictable TCP initial sequence number issue.

Fix

Use of Insufficiently Random Values

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-330

Related Identifiers

CVE-2008-3612

Affected Products

Iphone

Ipod Touch

CVE-2008-3612

Weakness Enumeration

Related Identifiers

Affected Products

References · 11