CalDAV in Apple iOS prior to 5 does not validate X.509 certificates for SSL sessions, which allows man-in-the-middle malicious users to spoof calendar servers and obtain sensitive information via an arbitrary certificate.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple iphone os 4.3.3 |
||
apple iphone os 4.3.1 |
||
apple iphone os 4.0 |
||
apple iphone os 4.0.1 |
||
apple iphone os 3.2 |
||
apple iphone os 3.2.1 |
||
apple iphone os 3.0 |
||
apple iphone os 4.3.5 |
||
apple iphone os 4.2.8 |
||
apple iphone os 4.2.5 |
||
apple iphone os 4.2.1 |
||
apple iphone os 4.1 |
||
apple iphone os 3.1 |
||
apple iphone os 3.1.3 |
||
apple iphone os 3.1.2 |
||
apple iphone os 4.3.2 |
||
apple iphone os 4.3.0 |
||
apple iphone os 4.0.2 |
||
apple iphone os 3.2.2 |