Back to search
CVE-2008-1589
Published: Jul 14, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Safari on Apple iPhone before 2.0 and iPod touch before 2.0 misinterprets a menu button press as user confirmation for visiting a web site with a (1) self-signed or (2) invalid certificate, which makes it easier for remote attackers to spoof web sites.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ipod-iphone-certificate-info-disclosure(43734)
vdb-entry
x_refsource_XF
30186
vdb-entry
x_refsource_BID
JVN#88676089
third-party-advisory
x_refsource_JVN
APPLE-SA-2008-07-11
vendor-advisory
x_refsource_APPLE
ADV-2008-2094
vdb-entry
x_refsource_VUPEN
JVNDB-2008-000039
third-party-advisory
x_refsource_JVNDB
31074
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now