CVE-2012-3749 in iOSinfo

Summary

The extensions APIs in the kernel in Apple iOS before 6.0.1 provide kernel addresses in responses that contain an OSBundleMachOHeaders key, which makes it easier for remote attackers to bypass the ASLR protection mechanism via a crafted app.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

06/19/2012

Disclosure

11/03/2012

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
6855	Apple iOS OSBundleMachOSHeaders Key information disclosure	200	Proof-of-Concept	Official fix	CVE-2012-3749

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!