CVE-2011-0162 — Improper Input Validation in Apple Iphone OS

CWE-20 — Improper Input Validation4 documents4 sources

Severity

7.8HIGHNVD

EPSS

2.3%

top 15.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Iphone OS Apple Tvos Apple TV

Timeline

PublishedMar 11

Latest updateMay 14

Description

Wi-Fi in Apple iOS before 4.3 and Apple TV before 4.2 does not properly perform bounds checking for Wi-Fi frames, which allows remote attackers to cause a denial of service (device reset) via unspecified traffic on the local wireless network.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages3 packages

▶NVDapple/tvos3.0.2+6

▶NVDapple/iphone_os4.2+29

▶NVDapple/apple_tv4.0

🔴Vulnerability Details

GHSA

GHSA-g92r-3mhp-3qq6: Wi-Fi in Apple iOS before 4↗2022-05-14

▶

CVEList

CVE-2011-0162: Wi-Fi in Apple iOS before 4↗2011-03-11

▶

💬Community

Bugzilla

CVE-2010-4258 kernel: failure to revert address limit override in OOPS error path [rhel-4.8.z]↗2010-12-03

▶