Published: 11/11/2011 Updated: 23/05/2021

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

libinfo in Apple iOS prior to 5.0.1 does not properly formulate domain-name queries, which allows remote malicious users to obtain sensitive information via a crafted DNS hostname.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple iphone os 4.1
apple iphone os 2.1.1
apple iphone os 3.0
apple iphone os 3.2.2
apple iphone os 4.0.2
apple iphone os 2.0.0
apple iphone os 1.1.3
apple iphone os 4.2.8
apple iphone os 4.2.1
apple iphone os 1.1.4
apple iphone os 1.1.5
apple iphone os 2.2
apple iphone os 2.1
apple iphone os 4.0
apple iphone os 1.0.2
apple iphone os 3.1
apple iphone os 1.1.0
apple iphone os 4.3.5
apple iphone os 1.0.0
apple iphone os 2.2.1
apple iphone os 2.0.2
apple iphone os 4.3.1
apple iphone os 1.1.2
apple iphone os 1.1.1
apple iphone os 4.2.5
apple iphone os 2.0
apple iphone os 2.0.1
apple iphone os 1.0
apple iphone os 1.1
apple iphone os 4.3.4
apple iphone os 4.2.9
apple iphone os 1.0.1
apple iphone os
apple iphone os 3.2.1
apple iphone os 3.0.1
apple iphone os 4.3.0
apple iphone os 4.3.3
apple iphone os 4.0.1
apple iphone os 3.2
apple iphone os 5.0
apple iphone os 3.1.3
apple iphone os 3.1.2
apple iphone os 4.3.2
apple iphone os 4.2

CWE-200 http://support.apple.com/kb/HT5052 http://lists.apple.com/archives/Security-announce/2011/Nov/msg00001.html http://support.apple.com/kb/HT5130 http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html https://nvd.nist.gov

CVE-2011-3441

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect