CVE-2012-3749

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 6.0.1

Description The issue concerns the extensions APIs in the kernel, which provide kernel addresses in certain responses. This makes it easier for remote attackers to bypass the Address Space Layout Randomization (ASLR) protection mechanism by using a crafted app. ASLR is a security feature that randomizes the location of an application's code and data in memory to prevent attackers from predicting where certain pieces of code or data will be.

Recommendations For Apple iOS versions prior to 6.0.1, update to version 6.0.1 or later to resolve the issue.