Vulnerability Name:

CVE-2010-4211 (CCN-63002)

Assigned:2010-11-04
Published:2010-11-04
Updated:2017-08-17
Summary:The PayPal app before 3.0.1 for iOS does not verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof a PayPal web server via an arbitrary certificate.
CVSS v3 Severity:4.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:2.9 Low (CVSS v2 Vector: AV:A/AC:M/Au:N/C:P/I:N/A:N)
2.1 Low (Temporal CVSS v2 Vector: AV:A/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
2.9 Low (CCN CVSS v2 Vector: AV:A/AC:M/Au:N/C:P/I:N/A:N)
2.1 Low (CCN Temporal CVSS v2 Vector: AV:A/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-287
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2010-4211

Source: MISC
Type: UNKNOWN
http://itunes.apple.com/us/app/paypal/id283646709

Source: CCN
Type: Apple Web site
PayPal

Source: MISC
Type: UNKNOWN
http://news.cnet.com/8301-27080_3-20021730-245.html

Source: MISC
Type: UNKNOWN
http://online.wsj.com/article/SB10001424052748703506904575592782874885808.html

Source: CCN
Type: SA42115
PayPal for iPhone Certificate Verification Security Issue

Source: MISC
Type: UNKNOWN
http://viaforensics.com/press-releases/viaforensics-uncovers-paypal-application-vulnerability.html

Source: MISC
Type: UNKNOWN
http://viaforensics.com/security/viaforensics-uncovers-significant-vulnerability-paypal-iphone.html

Source: CCN
Type: OSVDB ID: 69025
PayPal App for iPhone X.509 Certificate Verification MiTM Site Spoofing Weakness

Source: BID
Type: UNKNOWN
44657

Source: CCN
Type: BID-44657
eBay PayPal for iOS-based Mobile Devices SSL Certificate Validation Security Bypass Vulnerability

Source: VUPEN
Type: Vendor Advisory
ADV-2010-2887

Source: XF
Type: UNKNOWN
paypal-certificate-info-disclosure(63002)

Source: XF
Type: UNKNOWN
paypal-certificate-info-disclosure(63002)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ebay:paypal:*:*:*:*:*:*:*:* (Version <= 3.0)
  • AND
  • cpe:/o:apple:iphone_os:3.1:*:*:*:*:*:*:*
  • OR cpe:/o:apple:iphone_os:3.1.2:*:*:*:*:*:*:*
  • OR cpe:/o:apple:iphone_os:3.1.3:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:apple:iphone_os:3.1:-:ipodtouch:*:*:*:*:*
  • AND
  • cpe:/o:apple:iphone_os:3.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    ebay paypal *
    apple iphone os 3.1
    apple iphone os 3.1.2
    apple iphone os 3.1.3
    apple iphone os 3.1 -
    apple iphone os 3.1