CVE-2008-3876
First published: Tue Sep 02 2008(Updated: )
Apple iPhone 2.0.2, in some configurations, allows physically proximate attackers to bypass intended access restrictions, and obtain sensitive information or make arbitrary use of the device, via an Emergency Call tap and a Home double-tap, followed by a tap of any contact's blue arrow.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iPhone | =2.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2008-3876?
CVE-2008-3876 is considered a medium severity vulnerability due to its potential to bypass access restrictions and expose sensitive information.
How do I fix CVE-2008-3876?
To mitigate CVE-2008-3876, it is recommended to upgrade the device to a newer version of the iOS software that addresses this vulnerability.
Who is affected by CVE-2008-3876?
CVE-2008-3876 specifically affects users of Apple iPhone devices running iOS version 2.0.2.
What type of attack does CVE-2008-3876 involve?
CVE-2008-3876 involves a physical proximity attack that allows unauthorized access via an Emergency Call feature.
What can attackers do with CVE-2008-3876?
Attackers can exploit CVE-2008-3876 to bypass access controls, access personal contacts, and potentially misuse the device.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/apple
- canonical/apple iphone
- version/apple iphone/2.0.2