CVE-2012-3749
N/A
N/A
Summary
The extensions APIs in the kernel in Apple iOS before 6.0.1 provide kernel addresses in responses that contain an OSBundleMachOHeaders key, which makes it easier for remote attackers to bypass the ASLR protection mechanism via a crafted app.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/56361
- http://secunia.com/advisories/51445
- http://support.apple.com/kb/HT5567
- http://lists.apple.com/archives/security-announce/2012/Nov/msg00000.html
- http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0012.html
- http://support.apple.com/kb/HT5598
References
- http://www.securityfocus.com/bid/56361
- http://secunia.com/advisories/51445
- http://support.apple.com/kb/HT5567
- http://lists.apple.com/archives/security-announce/2012/Nov/msg00000.html
- http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0012.html
- http://support.apple.com/kb/HT5598
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.