|
2901
|
-
5.0
|
MEDIUM
|
WebKit in Apple iOS before 8.4.1 allows remote attackers to spoof clicks via a crafted web site that leverages tap events.
|
CWE-254
7PK - Security Features
|
CVE-2015-5759
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2902
|
-
6.8
|
MEDIUM
|
ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted TIFF i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5758
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2903
|
-
9.3
|
HIGH
|
libpthread in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via an app that uses a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5757
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2904
|
-
6.8
|
MEDIUM
|
FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted fon…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5756
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2905
|
-
6.8
|
MEDIUM
|
CoreText in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5755
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2906
|
-
5.0
|
MEDIUM
|
Backup in Apple iOS before 8.4.1 allows attackers to bypass intended restrictions on filesystem access via a crafted app that creates a symlink.
|
CWE-59
Link Following
|
CVE-2015-5752
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2907
|
-
4.3
|
MEDIUM
|
The Sandbox_profiles component in Apple iOS before 8.4.1 allows attackers to bypass the third-party app-sandbox protection mechanism and read arbitrary managed preferences via a crafted app.
|
CWE-200
Information Exposure
|
CVE-2015-5749
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2908
|
-
2.1
|
LOW
|
The kernel in Apple OS X before 10.10.5 does not properly mount HFS volumes, which allows local users to cause a denial of service via a crafted volume.
|
CWE-17
Code
|
CVE-2015-5748
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4.1
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2909
|
-
5.0
|
MEDIUM
|
AppleFileConduit in Apple iOS before 8.4.1 allows attackers to bypass intended restrictions on filesystem access via an afc command that leverages symlink mishandling.
|
CWE-284
Improper Access Control
|
CVE-2015-5746
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4
|
|
|
2024-11-21 11:33
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2910
|
-
4.3
|
MEDIUM
|
libxml2 in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a crafted XM…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3807
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.4 9.1
|
|
|
2024-11-21 11:29
2015-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|