CVE-2011-3440 - Permissions, Privileges, and Access Control vulnerability in Apple Ipad2 and Iphone OS

Publication

2011-11-11

Last modification

2011-11-15

Summary

The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data by opening a Smart Cover during power-off confirmation.

Description

Apple iPad is prone to a local security-bypass vulnerability.An attacker with physical access to the affected device can exploit this issue to access user data not protected by Data Protection feature.Apple iOS 4.3 through 5.0 for iPad 2 are vulberable.

Solution

The vendor released an update. Please see the references for details.

Exploit

An attacker requires physical access to exploit the issue.

Classification

CWE-264 - Permissions, Privileges, and Access Control

Risk level (CVSS AV:L/AC:H/Au:N/C:P/I:N/A:N)

Low

1.2

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

Vendor Product Versions
Apple Ipad2 
Apple Iphone OS  4.2.9 , 3.1.2 , 3.0 , 2.0.2 , 4.1 , 1.0 , 3.2 , 1.0.1 , 3.0.1 , 2.2 , 2.1.1 , 2.0.1 , 1.1 , 4.2.5 , 2.2.1 , 4.3.0 , 3.1.3 , 4.3.1 , 3.1 , 5.0 , 1.1.4 , 1.1.1 , 4.0.1 , 4.2.8 , 1.0.2 , 4.2 , 4.3.3 , 2.0 , 4.3.5 , 1.1.0 , 3.2.1 , 4.2.1 , 4.3.4 , 3.2.2 , 1.1.3 , 4.3.2 , 4.0.2 , 2.1 , 4.0 , 1.1.5 , 1.1.2 , 1.0.0