3 matches found
Details Surface on Patched Sandbox Violation Vulnerability in iOS
Apple patched an issue last week in iOS that could have allowed attackers to bypass the third-party app-sandbox protection mechanism on devices and read arbitrary managed preferences via a special app. The issue, which was present in versions of iOS prior to 8.4.1, stems from a vulnerability with...
CVE-2015-3793
CVE-2015-3793 affects iOS prior to 8.4.1. It describes a flaw in CFPreferences that lets a crafted third‑party app bypass the third‑party app sandbox protections and read arbitrary managed preferences. Apple patched this in iOS 8.4.1 by reinforcing the sandbox profile (CFPreferences/Sandbox_profi...
CVE-2015-3793
CFPreferences in Apple iOS before 8.4.1 allows attackers to bypass the third-party app-sandbox protection mechanism and read arbitrary managed preferences via a crafted app...