NuytsTech Security

CVE-2016-4620

by ·

The Sandbox Profiles component in Apple iOS before 10 does not properly restrict access to directory metadata for SMS draft directories, which allows attackers to discover text-message recipients via a crafted app.

Date published : 2016-09-18

http://lists.apple.com/archives/security-announce/2016/Sep/msg00002.html

http://lists.apple.com/archives/security-announce/2016/Sep/msg00008.html

Tags: