Apple · Ios · CVE-2012-0585
**Name of the Vulnerable Software and Affected Versions**
Apple iOS versions prior to 5.1
**Description**
The issue allows remote attackers to bypass intended privacy settings and insert history entries via JavaScript code that calls the (1) pushState or (2) replaceState method in the Private Browsing feature in Safari.
**Recommendations**
For versions prior to 5.1, update to version 5.1 or later to resolve the issue.