CVE-2012-0642
Description
Integer underflow in Apple iOS before 5.1 allows remote attackers to execute arbitrary code or cause a denial of service (device crash) via a crafted catalog file in an HFS disk image.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Integer underflow in Apple iOS before 5.1 allows remote code execution or device crash via crafted HFS disk image catalog file.
Vulnerability
Integer underflow in the handling of catalog files in HFS disk images in Apple iOS before 5.1 allows remote attackers to execute arbitrary code or cause a denial of service (device crash). Affected versions: iOS prior to 5.1.
Exploitation
An attacker delivers a crafted HFS disk image with a malicious catalog file. No authentication is required; user interaction may be needed to open the image.
Impact
Successful exploitation results in arbitrary code execution with system privileges or a device crash, leading to a denial of service.
Mitigation
Update to iOS 5.1, released on March 7, 2012. No workarounds have been disclosed.
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <5.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- lists.apple.com/archives/security-announce/2012/Mar/msg00001.htmlnvdMailing ListVendor Advisory
- lists.apple.com/archives/security-announce/2012/May/msg00001.htmlnvdMailing ListVendor Advisory
- secunia.com/advisories/48288nvdThird Party Advisory
- support.apple.com/kb/HT5281nvdVendor Advisory
- www.securitytracker.com/idnvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.