Описание
dyld in Apple iOS before 9.2, tvOS before 9.1, and watchOS before 2.1 mishandles segment validation, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
dyld in Apple iOS before 9.2, tvOS before 9.1, and watchOS before 2.1 mishandles segment validation, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-7072
- https://support.apple.com/HT205635
- https://support.apple.com/HT205640
- https://support.apple.com/HT205641
- http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html
- http://lists.apple.com/archives/security-announce/2015/Dec/msg00001.html
- http://lists.apple.com/archives/security-announce/2015/Dec/msg00002.html
- http://www.securitytracker.com/id/1034348
Связанные уязвимости
nvd
около 10 лет назад
dyld in Apple iOS before 9.2, tvOS before 9.1, and watchOS before 2.1 mishandles segment validation, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
fstec
около 10 лет назад
Уязвимость операционной системы iOS, позволяющая нарушителю выполнить произвольный код в привилегированном контексте