漏洞信息详情
iPhone OS 信息泄露漏洞
- CNNVD编号:CNNVD-200909-183
- 危害等级: 中危
- CVE编号: CVE-2009-2797
- 漏洞类型: 信息泄露
- 发布时间: 2009-09-10
- 威胁类型: 远程
- 更新时间: 2009-09-24
- 厂 商: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
- 漏洞来源: Allan StevenRobert...
漏洞简介
iPhone OS是苹果iPhone智能手机和iPod touch播放器所使用的操作系统。
iPhone OS中Safari在referer头中包含有来自原始URL的用户名和口令,这可能导致泄漏敏感信息。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://www.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com
参考网址
来源: support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com
链接:http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT3860
来源: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
名称: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple-SA-2009-09-09-1
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2009/Sep/msg00001.HTML
来源: SECUNIA
名称: 36677
链接:http://secunia.com/advisories/36677
受影响实体
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:1.1.5
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:1.1.4
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:1.1.1
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:1.1.2
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:1.1.3
补丁
暂无
评论