CVE Vulnerabilities

CVE-2012-3738

Published: Sep 20, 2012 | Modified: Mar 26, 2013
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
3.6 LOW
AV:L/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The Emergency Dialer screen in the Passcode Lock implementation in Apple iOS before 6 does not properly limit the dialing methods, which allows physically proximate attackers to bypass intended access restrictions and make FaceTime calls through Voice Dialing, or obtain sensitive contact information by attempting to make a FaceTime call and reading the contact suggestions.

Affected Software

Name Vendor Start Version End Version
Iphone_os Apple 1.0.0 1.0.0
Iphone_os Apple 1.0.1 1.0.1
Iphone_os Apple 1.0.2 1.0.2
Iphone_os Apple 1.1.0 1.1.0
Iphone_os Apple 1.1.1 1.1.1
Iphone_os Apple 1.1.2 1.1.2
Iphone_os Apple 1.1.3 1.1.3
Iphone_os Apple 1.1.4 1.1.4
Iphone_os Apple 1.1.5 1.1.5
Iphone_os Apple 2.0 2.0
Iphone_os Apple 2.0.1 2.0.1
Iphone_os Apple 2.0.2 2.0.2
Iphone_os Apple 2.1 2.1
Iphone_os Apple 2.1.1 2.1.1
Iphone_os Apple 2.2 2.2
Iphone_os Apple 2.2.1 2.2.1
Iphone_os Apple 3.0 3.0
Iphone_os Apple 3.0.1 3.0.1
Iphone_os Apple 3.1 3.1
Iphone_os Apple 3.1.2 3.1.2
Iphone_os Apple 3.1.3 3.1.3
Iphone_os Apple 3.2 3.2
Iphone_os Apple 3.2.1 3.2.1
Iphone_os Apple 3.2.2 3.2.2
Iphone_os Apple 4.0 4.0
Iphone_os Apple 4.0.1 4.0.1
Iphone_os Apple 4.0.2 4.0.2
Iphone_os Apple 4.1 4.1
Iphone_os Apple 4.2.1 4.2.1
Iphone_os Apple 4.2.5 4.2.5
Iphone_os Apple 4.2.8 4.2.8
Iphone_os Apple 4.3.0 4.3.0
Iphone_os Apple 4.3.1 4.3.1
Iphone_os Apple 4.3.2 4.3.2
Iphone_os Apple 4.3.3 4.3.3
Iphone_os Apple 4.3.5 4.3.5
Iphone_os Apple 5.0 5.0
Iphone_os Apple 5.0.1 5.0.1
Iphone_os Apple 5.1 5.1
Iphone_os Apple * 5.1.1

References