CVE-2011-3440 - Permissions, Privileges, and Access Control vulnerability in Apple Ip ad2/hone OS

Summary

The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data by opening a Smart Cover during power-off confirmation.

Classification

CWE-264 - Permissions, Privileges, and Access Control

Risk level (CVSS 1.2)

Low

1.2

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None