Vulnerability Description
The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Iphone Os | 3.0 |
References
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
- http://osvdb.org/76330
- http://support.apple.com/kb/HT4999
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70560
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
- http://osvdb.org/76330
- http://support.apple.com/kb/HT4999
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70560
FAQ
What is CVE-2011-3430?
CVE-2011-3430 is a vulnerability with a CVSS score of 9.3 (HIGH). The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to hav...
How severe is CVE-2011-3430?
CVE-2011-3430 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-3430?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Iphone Os.