CVE-2012-3749
03.11.2012, 17:55
The extensions APIs in the kernel in Apple iOS before 6.0.1 provide kernel addresses in responses that contain an OSBundleMachOHeaders key, which makes it easier for remote attackers to bypass the ASLR protection mechanism via a crafted app.Enginsight
| Vendor | Product | Version |
|---|---|---|
| apple | iphone_os | 𝑥 ≤ 6.0 |
| apple | iphone_os | 1.0.0 |
| apple | iphone_os | 1.0.1 |
| apple | iphone_os | 1.0.2 |
| apple | iphone_os | 1.1.0 |
| apple | iphone_os | 1.1.1 |
| apple | iphone_os | 1.1.2 |
| apple | iphone_os | 1.1.3 |
| apple | iphone_os | 1.1.4 |
| apple | iphone_os | 1.1.5 |
| apple | iphone_os | 2.0 |
| apple | iphone_os | 2.0.0 |
| apple | iphone_os | 2.0.1 |
| apple | iphone_os | 2.0.2 |
| apple | iphone_os | 2.1 |
| apple | iphone_os | 2.1.1 |
| apple | iphone_os | 2.2 |
| apple | iphone_os | 2.2.1 |
| apple | iphone_os | 3.0 |
| apple | iphone_os | 3.0.1 |
| apple | iphone_os | 3.1 |
| apple | iphone_os | 3.1.2 |
| apple | iphone_os | 3.1.3 |
| apple | iphone_os | 3.2 |
| apple | iphone_os | 3.2.1 |
| apple | iphone_os | 3.2.2 |
| apple | iphone_os | 4.0 |
| apple | iphone_os | 4.0.1 |
| apple | iphone_os | 4.0.2 |
| apple | iphone_os | 4.1 |
| apple | iphone_os | 4.2.1 |
| apple | iphone_os | 4.2.5 |
| apple | iphone_os | 4.2.8 |
| apple | iphone_os | 4.3.0 |
| apple | iphone_os | 4.3.1 |
| apple | iphone_os | 4.3.2 |
| apple | iphone_os | 4.3.3 |
| apple | iphone_os | 4.3.5 |
| apple | iphone_os | 5.0 |
| apple | iphone_os | 5.0.1 |
| apple | iphone_os | 5.1.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References