CVE-2013-0977
dyld
存在于iPhone3GS、iPod Touch4、iPad2之后的设备
影响:本地用户可执行未签名的代码
说明:状态管理器未能严格校正可执行文件。
苹果现已拒绝在状态管理器下加载可执行文件的缓冲部分
dyld
Available for: iPhone 3GS and later,
iPod touch (4th generation) and later, iPad 2 and later
Impact: A local user may be able to execute unsigned code
Description: A state management issue existed in the handling of
Mach-O executable files with overlapping segments. This issue was
addressed by refusing to load an executable with overlapping
segments.
CVE-ID
CVE-2013-0977 : evad3rs
No comments:
Post a Comment