← Back to CVEs
CVE-2012-3749
N/ADescription
The extensions APIs in the kernel in Apple iOS before 6.0.1 provide kernel addresses in responses that contain an OSBundleMachOHeaders key, which makes it easier for remote attackers to bypass the ASLR protection mechanism via a crafted app.
CVE Details
CVSS v3.1 ScoreN/A
Published11/3/2012
Last Modified4/11/2025
Sourcenvd
Honeypot Sightings0
Affected Products
apple:iphone_os
Weaknesses (CWE)
CWE-200
References
http://archives.neohapsis.com/archives/bugtraq/2012-11/0012.html(product-security@apple.com)
http://lists.apple.com/archives/security-announce/2012/Nov/msg00000.html(product-security@apple.com)
http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html(product-security@apple.com)
http://secunia.com/advisories/51445(product-security@apple.com)
http://support.apple.com/kb/HT5567(product-security@apple.com)
http://support.apple.com/kb/HT5598(product-security@apple.com)
http://www.securityfocus.com/bid/56361(product-security@apple.com)
http://archives.neohapsis.com/archives/bugtraq/2012-11/0012.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2012/Nov/msg00000.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/51445(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT5567(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT5598(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/56361(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.