Unrated severityNVD Advisory· Published Sep 10, 2009· Updated Jun 16, 2026
CVE-2009-2796
CVE-2009-2796
Description
The UIKit component in Apple iPhone OS 3.0, and iPhone OS 3.0.1 for iPod touch, allows physically proximate attackers to discover a password by watching a user undo deletions of characters in the password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:o:apple:iphone_os:3.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:apple:iphone_os:3.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:3.0.1:*:*:*:*:*:*:*
- (no CPE)range: = 3.0, 3.0.1
Patches
Vulnerability mechanics
References
5- lists.apple.com/archives/security-announce/2009/Sep/msg00001.htmlnvdPatchVendor Advisory
- support.apple.com/kb/HT3860nvdPatchVendor Advisory
- secunia.com/advisories/36677nvdVendor Advisory
- www.securityfocus.com/bid/36335nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/53185nvd
News mentions
0No linked articles in our index yet.