CVE-2012-3749
EUVD-2012-369603.11.2012, 17:55
The extensions APIs in the kernel in Apple iOS before 6.0.1 provide kernel addresses in responses that contain an OSBundleMachOHeaders key, which makes it easier for remote attackers to bypass the ASLR protection mechanism via a crafted app.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| apple | iphone_os | 𝑥 ≤ 6.0 |
| apple | iphone_os | 1.0.0 |
| apple | iphone_os | 1.0.1 |
| apple | iphone_os | 1.0.2 |
| apple | iphone_os | 1.1.0 |
| apple | iphone_os | 1.1.1 |
| apple | iphone_os | 1.1.2 |
| apple | iphone_os | 1.1.3 |
| apple | iphone_os | 1.1.4 |
| apple | iphone_os | 1.1.5 |
| apple | iphone_os | 2.0 |
| apple | iphone_os | 2.0.0 |
| apple | iphone_os | 2.0.1 |
| apple | iphone_os | 2.0.2 |
| apple | iphone_os | 2.1 |
| apple | iphone_os | 2.1.1 |
| apple | iphone_os | 2.2 |
| apple | iphone_os | 2.2.1 |
| apple | iphone_os | 3.0 |
| apple | iphone_os | 3.0.1 |
| apple | iphone_os | 3.1 |
| apple | iphone_os | 3.1.2 |
| apple | iphone_os | 3.1.3 |
| apple | iphone_os | 3.2 |
| apple | iphone_os | 3.2.1 |
| apple | iphone_os | 3.2.2 |
| apple | iphone_os | 4.0 |
| apple | iphone_os | 4.0.1 |
| apple | iphone_os | 4.0.2 |
| apple | iphone_os | 4.1 |
| apple | iphone_os | 4.2.1 |
| apple | iphone_os | 4.2.5 |
| apple | iphone_os | 4.2.8 |
| apple | iphone_os | 4.3.0 |
| apple | iphone_os | 4.3.1 |
| apple | iphone_os | 4.3.2 |
| apple | iphone_os | 4.3.3 |
| apple | iphone_os | 4.3.5 |
| apple | iphone_os | 5.0 |
| apple | iphone_os | 5.0.1 |
| apple | iphone_os | 5.1.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References