CVE-2012-3698

Name of the Vulnerable Software and Affected Versions Apple Xcode versions prior to 4.4

Description The issue allows remote attackers to read keychain entries via a crafted app, specifically targeting keychain entries of helper tools or command-line tools, by exploiting improper composition of a designated requirement during the signing of programs that lack bundle identifiers.

Recommendations For Apple Xcode versions prior to 4.4, update to version 4.4 or later to resolve the issue.