← Back to CVEs

CVE-2013-3950

N/A

Description

Stack-based buffer overflow in the openSharedCacheFile function in dyld.cpp in dyld in Apple iOS 5.1.x and 6.x through 6.1.3 makes it easier for attackers to conduct untethering attacks via a long string in the DYLD_SHARED_CACHE_DIR environment variable.

CVE Details

CVSS v3.1 ScoreN/A

Published6/5/2013

Last Modified4/29/2026

Sourcenvd

Honeypot Sightings0

Affected Products

apple:iphone_os

Weaknesses (CWE)

CWE-119

References

http://antid0te.com/syscan_2013/SyScan2013_Mountain_Lion_iOS_Vulnerabilities_Garage_Sale_Whitepaper.pdf(cve@mitre.org)

http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html(cve@mitre.org)

http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html(cve@mitre.org)

http://support.apple.com/kb/HT5934(cve@mitre.org)

http://www.securitytracker.com/id/1029054(cve@mitre.org)

http://www.syscan.org/index.php/sg/program/day/2(cve@mitre.org)

http://antid0te.com/syscan_2013/SyScan2013_Mountain_Lion_iOS_Vulnerabilities_Garage_Sale_Whitepaper.pdf(af854a3a-2127-422b-91ae-364da2661108)

http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html(af854a3a-2127-422b-91ae-364da2661108)

http://support.apple.com/kb/HT5934(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id/1029054(af854a3a-2127-422b-91ae-364da2661108)

http://www.syscan.org/index.php/sg/program/day/2(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.