← Voltar para CVEs

CVE-2013-3950

N/A

Descricao

Stack-based buffer overflow in the openSharedCacheFile function in dyld.cpp in dyld in Apple iOS 5.1.x and 6.x through 6.1.3 makes it easier for attackers to conduct untethering attacks via a long string in the DYLD_SHARED_CACHE_DIR environment variable.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado6/5/2013

Ultima modificacao4/29/2026

Fontenvd

Avistamentos honeypot0

Produtos afetados

apple:iphone_os

Fraquezas (CWE)

CWE-119

Referencias

http://antid0te.com/syscan_2013/SyScan2013_Mountain_Lion_iOS_Vulnerabilities_Garage_Sale_Whitepaper.pdf(cve@mitre.org)

http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html(cve@mitre.org)

http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html(cve@mitre.org)

http://support.apple.com/kb/HT5934(cve@mitre.org)

http://www.securitytracker.com/id/1029054(cve@mitre.org)

http://www.syscan.org/index.php/sg/program/day/2(cve@mitre.org)

http://antid0te.com/syscan_2013/SyScan2013_Mountain_Lion_iOS_Vulnerabilities_Garage_Sale_Whitepaper.pdf(af854a3a-2127-422b-91ae-364da2661108)

http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html(af854a3a-2127-422b-91ae-364da2661108)

http://support.apple.com/kb/HT5934(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id/1029054(af854a3a-2127-422b-91ae-364da2661108)

http://www.syscan.org/index.php/sg/program/day/2(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.