CVE-2015-1103
published 2015-04-10CVE-2015-1103: The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 makes routing changes in response to ICMP_REDIRECT messages, which…
PriorityP432high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.46%
81.2th percentile
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 makes routing changes in response to ICMP_REDIRECT messages, which allows remote attackers to cause a denial of service (network outage) or obtain sensitive packet-content information via a crafted ICMP packet.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | apple_tv | — | — |
| apple | ios | — | — |
| apple | iphone_os | <= 8.2 | — |
| apple | mac_os_x | <= 10.10.2 | — |
| apple | os_x_yosemite_v10.10.3_and_security_update_2015-004 | — | — |
| apple | tvos | <= 7.1 | — |
| apple | watch_os | — | — |
Apple
CVE-2015-1103: iOS 8.3
vendor_apple·CVSS 7.5
CVE-2015-1103 [HIGH] CVE-2015-1103: iOS 8.3
Apple Security Update: About the security content of iOS 8.3
Product: iOS
Version: 8.3
CVE: CVE-2015-1103
Component: CVE-ID
Apple
CVE-2015-1103: Watch OS 1.0.1
vendor_apple·CVSS 7.5
CVE-2015-1103 [HIGH] CVE-2015-1103: Watch OS 1.0.1
Apple Security Update: About the security content of Watch OS 1.0.1
Product: Watch OS
Version: 1.0.1
CVE: CVE-2015-1103
Component: CVE-ID
Apple
CVE-2015-1103: Apple TV 7.2
vendor_apple·CVSS 7.5
CVE-2015-1103 [HIGH] CVE-2015-1103: Apple TV 7.2
Apple Security Update: About the security content of Apple TV 7.2
Product: Apple TV
Version: 7.2
CVE: CVE-2015-1103
Component: CVE-ID
Apple
CVE-2015-1103: OS X Yosemite v10.10.3 and Security Update 2015-004
vendor_apple·CVSS 7.5
CVE-2015-1103 [HIGH] CVE-2015-1103: OS X Yosemite v10.10.3 and Security Update 2015-004
Apple Security Update: About the security content of OS X Yosemite v10.10.3 and Security Update 2015-004
Product: OS X Yosemite v10.10.3 and Security Update 2015-004
CVE: CVE-2015-1103
Component: CVE-ID
GHSA
GHSA-jhx6-93g8-xmp4: The kernel in Apple iOS before 8
ghsa_unreviewed·2022-05-14
CVE-2015-1103 [HIGH] CWE-20 GHSA-jhx6-93g8-xmp4: The kernel in Apple iOS before 8
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 makes routing changes in response to ICMP_REDIRECT messages, which allows remote attackers to cause a denial of service (network outage) or obtain sensitive packet-content information via a crafted ICMP packet.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2015/Apr/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2015/Apr/msg00003.htmlhttp://www.securitytracker.com/id/1032048https://support.apple.com/HT204659https://support.apple.com/HT204661https://support.apple.com/HT204662https://support.apple.com/kb/HT204870http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2015/Apr/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2015/Apr/msg00003.htmlhttp://www.securitytracker.com/id/1032048https://support.apple.com/HT204659https://support.apple.com/HT204661https://support.apple.com/HT204662https://support.apple.com/kb/HT204870
2015-04-10
Published