Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2008-4228 | First vendor Publication | 2008-11-25 |
| Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:L/AC:L/Au:N/C:N/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 3.6 | Attack Range | Local |
| Cvss Impact Score | 4.9 | Attack Complexity | Low |
| Cvss Expoit Score | 3.9 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| The Passcode Lock feature in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 allows physically proximate attackers to leverage the emergency-call ability of locked devices to make a phone call to an arbitrary number. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4228 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-264 | Permissions, Privileges, and Access Controls |
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 50025 | Apple iPhone / iPod Touch Passcode Lock Emergency Call Restriction Bypass iPhoneOS contains a flaw that may allow a malicious user to bypass screen locking. The issue is triggered when Passcode Lock is enabled, but the emergency call option allows an attacker to dial any phone number. This flaw may lead to a loss of integrity. |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2024-11-28 23:12:55 |
|
| 2024-11-28 12:16:34 |
|
| 2022-08-09 17:27:48 |
|
| 2020-05-23 00:22:18 |
|
| 2016-06-28 17:18:23 |
|
| 2016-04-26 17:51:20 |
|
| 2013-05-11 00:27:01 |
|
