CVE-2008-4593

Published: Oct 17, 2008Modified: Apr 23, 2026

1.2

Vector

AV:L/AC:H/Au:N/C:P/I:N/A:N

Exploitability: 1.9 / Impact: 2.9

Source: NVD

Description

Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled and Show SMS Preview is disabled, allows physically proximate attackers to obtain sensitive information by performing an Emergency Call tap and then reading SMS messages on the device screen, aka Apple bug number 6267416.

Affected (1)

Products: Apple: Iphone

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apple Iphone	Version 2.1

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (6)

http://securitytracker.com/id?1021021

Source: cve@mitre.org

http://www.karlkraft.com/index.php/2008/10/03/yet-another-iphone-emergency-call-security-bug/

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/46062

Source: cve@mitre.org

http://securitytracker.com/id?1021021

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.karlkraft.com/index.php/2008/10/03/yet-another-iphone-emergency-call-security-bug/

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/46062

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.