|
2881
|
-
6.8
|
MEDIUM
|
WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted we…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5790
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4.1
|
|
|
2024-11-21 11:33
2015-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2882
|
-
6.8
|
MEDIUM
|
WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted we…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5789
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4.1
|
|
|
2024-11-21 11:33
2015-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2883
|
-
4.3
|
MEDIUM
|
The WebKit Canvas implementation in Apple iOS before 9 allows remote attackers to bypass the Same Origin Policy and obtain sensitive image information via vectors involving a CANVAS element.
|
CWE-200
Information Exposure
|
CVE-2015-5788
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4.1
|
|
|
2024-11-21 11:33
2015-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2884
|
-
4.3
|
MEDIUM
|
The user interface in Safari in Apple iOS before 9 allows remote attackers to spoof URLs via unspecified vectors, a different vulnerability than CVE-2015-5764 and CVE-2015-5765.
|
CWE-20
Improper Input Validation
|
CVE-2015-5767
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4.1
|
|
|
2024-11-21 11:33
2015-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2885
|
-
4.3
|
MEDIUM
|
The user interface in Safari in Apple iOS before 9 allows remote attackers to spoof URLs via unspecified vectors, a different vulnerability than CVE-2015-5764 and CVE-2015-5767.
|
CWE-20
Improper Input Validation
|
CVE-2015-5765
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4.1
|
|
|
2024-11-21 11:33
2015-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2886
|
-
4.3
|
MEDIUM
|
The user interface in Safari in Apple iOS before 9 allows remote attackers to spoof URLs via unspecified vectors, a different vulnerability than CVE-2015-5765 and CVE-2015-5767.
|
CWE-20
Improper Input Validation
|
CVE-2015-5764
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4.1
|
|
|
2024-11-21 11:33
2015-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2887
|
-
5.0
|
MEDIUM
|
The document.cookie API implementation in the CFNetwork Cookies subsystem in WebKit in Apple iOS before 9 allows remote attackers to bypass an intended single-cookie restriction via unspecified vecto…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3801
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4.1
|
|
|
2024-11-21 11:29
2015-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2888
|
-
6.9
|
MEDIUM
|
The __sflush function in fflush.c in stdio in libc in FreeBSD 10.1 and the kernel in Apple iOS before 9 mishandles failures of the write system call, which allows context-dependent attackers to execu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8611
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4.1
|
|
|
2024-11-21 11:19
2015-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2889
|
-
4.3
|
MEDIUM
|
ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly initialize an unspecified data structure, which allows remote attackers to obtain sensitive information from process memory…
|
CWE-200
Information Exposure
|
CVE-2015-5782
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2890
|
-
4.3
|
MEDIUM
|
ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly initialize an unspecified data structure, which allows remote attackers to obtain sensitive information from process memory…
|
CWE-200
Information Exposure
|
CVE-2015-5781
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|