3 matches found
Details Surface on Patched Sandbox Violation Vulnerability in iOS
Apple patched an issue last week in iOS that could have allowed attackers to bypass the third-party app-sandbox protection mechanism on devices and read arbitrary managed preferences via a special app. The issue, which was present in versions of iOS prior to 8.4.1, stems from a vulnerability with...
CVE-2015-5749
The Sandboxprofiles component in Apple iOS before 8.4.1 allows attackers to bypass the third-party app-sandbox protection mechanism and read arbitrary managed preferences via a crafted app...
CVE-2015-5749
The CVE-2015-5749 issue affects Apple iOS prior to 8.4.1, where the Sandbox_profiles component (and CFPreferences under the third‑party app sandbox) could be bypassed by a crafted app to read arbitrary managed preferences. Apple and ThreatPost describe an in enterprise context where MDM‑provided ...