PT-2009-5159 · Apple · Ios+1

Published

2009-09-10

Updated

2018-11-16

CVE-2009-2795

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Apple iPhone OS versions prior to 3.1 Apple iPhone OS versions prior to 3.1.1 for iPod touch

Description A heap-based buffer overflow issue exists in the Recovery Mode component, allowing local users to bypass the passcode requirement and access arbitrary data through vectors related to command parsing.

Recommendations For Apple iPhone OS versions prior to 3.1, update to version 3.1 or later. For Apple iPhone OS versions prior to 3.1.1 for iPod touch, update to version 3.1.1 or later.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2009-2795

Affected Products

Ios

Ipod Touch

PT-2009-5159 · Apple · Ios+1

CVE-2009-2795

Weakness Enumeration

Related Identifiers

Affected Products

References · 6