Vulnerability Details CVE-2007-3753
Apple iPhone 1.1.1, with Bluetooth enabled, allows physically proximate attackers to cause a denial of service (application termination) and execute arbitrary code via crafted Service Discovery Protocol (SDP) packets, related to insufficient input validation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 78.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://docs.info.apple.com/article.html?artnum=306586
- http://lists.apple.com/archives/security-announce/2007/Sep/msg00001.html
- http://osvdb.org/38538
- http://secunia.com/advisories/26983
- http://securitytracker.com/id?1018752
- http://www.securityfocus.com/bid/25855
- http://www.vupen.com/english/advisories/2007/3287
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36844
- http://docs.info.apple.com/article.html?artnum=306586
- http://lists.apple.com/archives/security-announce/2007/Sep/msg00001.html
- http://osvdb.org/38538
- http://secunia.com/advisories/26983
- http://securitytracker.com/id?1018752
- http://www.securityfocus.com/bid/25855
- http://www.vupen.com/english/advisories/2007/3287
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36844