PT-2012-2754 · Apple · Ios
Pod2G
·
Published
2012-03-08
·
Updated
2018-11-29
·
CVE-2012-0646
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Apple iOS versions prior to 5.1
Description
A format string issue in the VPN component of Apple iOS allows remote attackers to execute arbitrary code via a crafted racoon configuration file.
Recommendations
For Apple iOS versions prior to 5.1, update to version 5.1 or later to resolve the issue.
Fix
Use of Externally-Controlled Format String
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ios