漏洞信息详情
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone 信息泄露漏洞
- CNNVD编号:CNNVD-200807-212
- 危害等级: 中危
- CVE编号: CVE-2008-1589
- 漏洞类型: 输入验证
- 发布时间: 2008-07-14
- 威胁类型: 远程
- 更新时间: 2021-07-14
- 厂 商: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
- 漏洞来源: Jonathan Rom Hiro...
漏洞简介
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone是美国苹果(CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple)公司的苹果公司的智能手机。
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone 存在信息泄露漏洞,当Safari访问了使用自签名或无效证书的站点时,会提示用户接受或拒绝证书。如果用户在提示时按下了菜单键,则在下一次访问该站点就会未经提示便接受该证书,这可能导致泄露敏感信息。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
http://www.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com
参考网址
来源: XF
名称: ipod-iPhone-certificate-info-disclosure(43734)
链接:http://xforce.iss.net/xforce/xfdb/43734
来源: BID
名称: 30186
链接:http://www.securityfocus.com/bid/30186
来源: VUPEN
名称: ADV-2008-2094
链接:http://www.frsirt.com/english/advisories/2008/2094/references
来源: SECUNIA
名称: 31074
链接:http://secunia.com/advisories/31074
来源: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
名称: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple-SA-2008-07-11
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2008//Jul/msg00001.HTML
来源: JVNDB
名称: JVNDB-2008-000039
链接:http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000039.HTML
来源: JVN
名称: JVN#88676089
链接:http://jvn.jp/en/jp/JVN88676089/index.HTML
受影响实体
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone:1.0
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone:1.0.1
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone:1.0.2
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone:1.02
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone:1.1.1
补丁
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论