NVD Vulnerability Detail

CVE-2015-1157

Summary	CoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service (reboot and messaging disruption) via crafted Unicode text that is not properly handled during display truncation in the Notifications feature, as demonstrated by Arabic characters in (1) an SMS message or (2) a WhatsApp message.
Publication Date	May 28, 2015, 10:59 a.m.
Registration Date	Jan. 26, 2021, 2:45 p.m.
Last Update	Nov. 21, 2024, 11:24 a.m.

CVSS2.0 : HIGH
Score	7.8
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	高
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:apple:iphone_os:8.1.3:::::::*
cpe:2.3:o:apple:iphone_os:8.1.2:::::::*
cpe:2.3:o:apple:iphone_os:8.3:::::::*
cpe:2.3:o:apple:iphone_os:8.0:::::::*
cpe:2.3:o:apple:iphone_os:8.0.1:::::::*
cpe:2.3:o:apple:iphone_os:8.0.2:::::::*
cpe:2.3:o:apple:iphone_os:8.1:::::::*
cpe:2.3:o:apple:iphone_os:8.2:::::::*

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:apple:mac_os_x::::::::			10.0.3

Configuration3		or higher	or less	more than	less than
cpe:2.3:a:apple:itunes::::::::			12.2

Related information, measures and tools

No	URL	タグ
1	http://9to5mac.com/2015/05/27/how-to-fix-ios-text-message-bug-crash-reboot/
2	http://9to5mac.com/2015/05/27/how-to-fix-ios-text-message-bug-crash-reboot/
3	http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html	Vendor Advisory
4	http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html	Vendor Advisory
5	http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html	Patch Vendor Advisory
6	http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html	Patch Vendor Advisory
7	http://lists.apple.com/archives/security-announce/2015/Sep/msg00003.html	Patch Vendor Advisory
8	http://lists.apple.com/archives/security-announce/2015/Sep/msg00003.html	Patch Vendor Advisory
9	http://support.apple.com/kb/HT204941	Vendor Advisory
10	http://support.apple.com/kb/HT204941	Vendor Advisory
11	http://support.apple.com/kb/HT204942	Vendor Advisory
12	http://support.apple.com/kb/HT204942	Vendor Advisory
13	http://www.ibtimes.co.uk/apple-ios-bug-sees-message-app-crash-iphone-reboot-simply-by-receiving-message-1503083
14	http://www.ibtimes.co.uk/apple-ios-bug-sees-message-app-crash-iphone-reboot-simply-by-receiving-message-1503083
15	http://www.reddit.com/r/apple/comments/37e8c1/malicious_text_message/	Exploit
16	http://www.reddit.com/r/apple/comments/37e8c1/malicious_text_message/	Exploit
17	http://www.reddit.com/r/apple/comments/37enow/about_the_latest_iphone_security_vulnerability/
18	http://www.reddit.com/r/apple/comments/37enow/about_the_latest_iphone_security_vulnerability/
19	http://www.reddit.com/r/explainlikeimfive/comments/37edde/eli5_how_that_text_you_can_send_to_friends_turns/	Exploit
20	http://www.reddit.com/r/explainlikeimfive/comments/37edde/eli5_how_that_text_you_can_send_to_friends_turns/	Exploit
21	http://www.securityfocus.com/bid/75491
22	http://www.securityfocus.com/bid/75491
23	http://www.securitytracker.com/id/1032408
24	http://www.securitytracker.com/id/1032408
25	http://zanzebek.com/a-simple-text-message-can-ruin-any-iphone/	Exploit
26	http://zanzebek.com/a-simple-text-message-can-ruin-any-iphone/	Exploit
27	https://ghostbin.com/paste/zws9m
28	https://ghostbin.com/paste/zws9m
29	https://support.apple.com/HT205221	Vendor Advisory
30	https://support.apple.com/HT205221	Vendor Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-17	コード	https://cwe.mitre.org/data/definitions/17.html

JVN Vulnerability Information

Apple iOS の CoreText におけるサービス運用妨害 (DoS) の脆弱性

Title	Apple iOS の CoreText におけるサービス運用妨害 (DoS) の脆弱性
Summary	Apple iOS の CoreText には、サービス運用妨害 (リブートおよびメッセージの中断) 状態にされる脆弱性が存在します。補足情報 : CWE による脆弱性タイプは、CWE-17: Code (コード) と識別されています。 http://cwe.mitre.org/data/definitions/17.html
Possible impacts	第三者により、通知機能の表示切り捨て (display truncation) の際に適切に処理されない巧妙に細工された Unicode テキストを介して、サービス運用妨害 (リブートおよびメッセージの中断) 状態にされる可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	May 26, 2015, midnight
Registration Date	May 29, 2015, 11:28 a.m.
Last Update	Oct. 5, 2015, 5:54 p.m.

Affected System

アップル

Apple Mac OS X 10.10 から 10.10.3

Apple Mac OS X 10.8.5

Apple Mac OS X 10.9.5

iOS 8.3 までの 8.x

iOS 8.4 未満 (iPad 2 以降)

iOS 8.4 未満 (iPhone 4s 以降)

iOS 8.4 未満 (iPod touch 第 5 世代以降)

iTunes 12.3 未満 (Windows 7 以降)

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2015-1157	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1157
National Vulnerability Database (NVD)
2	CVE-2015-1157	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1157

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-Other	https://www.ipa.go.jp/security/vuln/CWE.html#CWEOther

ベンダー情報

No	Name	URL
Apple
1	iOS 8	https://www.apple.com/jp/ios/
Apple Mailing Lists
2	APPLE-SA-2015-06-30-1 iOS 8.4	http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html
3	APPLE-SA-2015-06-30-2 OS X Yosemite v10.10.4 and Security Update 2015-005	http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html
4	APPLE-SA-2015-09-16-3 iTunes 12.3	http://lists.apple.com/archives/security-announce/2015/Sep/msg00003.html
Apple Security Updates
5	HT204941	http://support.apple.com/en-us/HT204941
6	HT204942	http://support.apple.com/en-us/HT204942
7	HT205221	https://support.apple.com/en-us/HT205221
Apple セキュリティアップデート
8	HT204941	http://support.apple.com/ja-jp/HT204941
9	HT204942	http://support.apple.com/ja-jp/HT204942
10	HT205221	http://support.apple.com/ja-jp/HT205221

その他

No	Name	URL
JVN
1	JVNVU#99970459	http://jvn.jp/vu/JVNVU99970459/index.html
関連文書
2	Apple iOS bug sees Message app crash and iPhone reboot simply by receiving a message	http://www.ibtimes.co.uk/apple-ios-bug-sees-message-app-crash-iphone-reboot-simply-by-receiving-message-1503083
3	E4990D66	https://ghostbin.com/paste/zws9m
4	ELI5: How that text you can send to friends turns off their phones. More info in description.	http://www.reddit.com/r/explainlikeimfive/comments/37edde/eli5_how_that_text_you_can_send_to_friends_turns/
5	How to fix the iOS text message bug causing iPhone crashing/reboot (U: Apple statement, watches too)	http://9to5mac.com/2015/05/27/how-to-fix-ios-text-message-bug-crash-reboot/

Change Log

No	Changed Details	Date of change
0	[2015年05月29日] 掲載 [2015年07月07日] 影響を受けるシステム：ベンダ情報の追加に伴い内容を更新ベンダ情報：アップル (HT204941) を追加ベンダ情報：アップル (HT204942) を追加ベンダ情報：アップル (APPLE-SA-2015-06-30-1 iOS 8.4) を追加ベンダ情報：アップル (APPLE-SA-2015-06-30-2 OS X Yosemite v10.10.4 and Security Update 2015-005) を追加 [2015年10月05日] 影響を受けるシステム：ベンダ情報の追加に伴い内容を更新ベンダ情報：アップル (APPLE-SA-2015-09-16-3 iTunes 12.3) を追加ベンダ情報：アップル (HT205221) を追加参考情報：JVN (JVNVU#99970459) を追加	Feb. 17, 2018, 10:37 a.m.

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:apple:iphone_os:8.1.3:::::::*
cpe:2.3:o:apple:iphone_os:8.1.2:::::::*
cpe:2.3:o:apple:iphone_os:8.3:::::::*
cpe:2.3:o:apple:iphone_os:8.0:::::::*
cpe:2.3:o:apple:iphone_os:8.0.1:::::::*
cpe:2.3:o:apple:iphone_os:8.0.2:::::::*
cpe:2.3:o:apple:iphone_os:8.1:::::::*
cpe:2.3:o:apple:iphone_os:8.2:::::::*