CVE-2011-0228
iPhone OS < 4.2.10 and 4.3.x < 4.3.5 - Man-in-the-Middle Attack via Improper X.509 Certificate Chain Validation
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2011-0228. PoCs published by jan0.
AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2011-0228, which addresses a certificate chain validation issue in iOS. The code includes a dynamic library (`isslfix.dylib`) that patches the vulnerability by blacklisting specific malicious certificates (Comodo and DigiNotar) and enforcing proper certificate validation.
Description
The Data Security component in Apple iOS before 4.2.10 and 4.3.x before 4.3.5 does not check the basicConstraints parameter during validation of X.509 certificate chains, which allows man-in-the-middle attackers to spoof an SSL server by using a non-CA certificate to sign a certificate for an arbitrary domain.
Exploits (1)
This repository contains a functional exploit PoC for CVE-2011-0228, which addresses a certificate chain validation issue in iOS. The code includes a dynamic library (`isslfix.dylib`) that patches the vulnerability by blacklisting specific malicious certificates (Comodo and DigiNotar) and enforcing proper certificate validation.