CVE-2014-4362
The Sandbox Profiles implementation in Apple iOS before 8 does not properly restrict the third-party app sandbox profile, which allows attackers to obtain sensitive Apple ID information via a crafted app.
Date published : 2014-09-18
http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html