CVE-2016-4655

Published on: 08/25/2016 12:00:00 AM UTC

Last Modified on: 03/23/2021 11:26:59 PM UTC

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Certain versions of Iphone Os from Apple contain the following vulnerability:

The kernel in Apple iOS before 9.3.5 allows attackers to obtain sensitive information from memory via a crafted app.

  • CVE-2016-4655 has been assigned by [email protected] to track the vulnerability - currently rated as MEDIUM severity.

CVSS3 Score: 5.5 - MEDIUM

Attack
Vector
Attack
Complexity
Privileges
Required
User
Interaction
LOCAL LOW NONE REQUIRED
Scope Confidentiality
Impact
Integrity
Impact
Availability
Impact
UNCHANGED HIGH NONE NONE

CVSS2 Score: 7.1 - HIGH

Access
Vector
Access
Complexity
Authentication
NETWORK MEDIUM NONE
Confidentiality
Impact
Integrity
Impact
Availability
Impact
COMPLETE NONE NONE

CVE References

Description Tags Link
Apple iOS CVE-2016-4655 Local Information Disclosure Vulnerability cve.report (archive)
text/html
URL Logo BID 92965
About the security content of iOS 10.0.1 - Apple Support Vendor Advisory
support.apple.com
text/html
URL Logo CONFIRM support.apple.com/HT207145
Apple - Lists.apple.com Mailing List
Vendor Advisory
lists.apple.com
text/html
URL Logo APPLE APPLE-SA-2016-09-14-1
Apple iOS CVE-2016-4655 Information Disclosure Vulnerability cve.report (archive)
text/html
URL Logo BID 92651
WebKit - not_number defineProperties UAF (Metasploit) - iOS remote Exploit www.exploit-db.com
Proof of Concept
text/html
URL Logo EXPLOIT-DB 44836
About the security content of iOS 9.3.5 - Apple Support Vendor Advisory
support.apple.com
text/html
URL Logo CONFIRM support.apple.com/HT207107
Sophisticated, persistent mobile attack against high-value targets on iOS | Lookout Blog blog.lookout.com
text/html
URL Logo MISC blog.lookout.com/blog/2016/08/25/trident-pegasus/
Apple iOS WebKit Flaws Let Remote Users Execute Arbitrary Code and Applications Obtain Kernel Memory Contents and Gain Elevated Privileges - SecurityTracker www.securitytracker.com
text/html
URL Logo SECTRACK 1036694
APPLE-SA-2016-08-25-1 iOS 9.3.5 Mailing List
Vendor Advisory
lists.apple.com
text/html
URL Logo APPLE APPLE-SA-2016-08-25-1

Exploit/POC from Github

8.4.1 Jailbreak using CVE-2016-4655 / CVE-2016-4656

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
Operating
System
AppleIphone Os10.0AllAllAll
Operating
System
AppleIphone Os10.0AllAllAll
Operating
System
AppleIphone OsAllAllAllAll
  • cpe:2.3:o:apple:iphone_os:10.0:*:*:*:*:*:*:*:
  • cpe:2.3:o:apple:iphone_os:10.0:*:*:*:*:*:*:*:
  • cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*: