|
3011
|
-
5.0
|
MEDIUM
|
The TCP implementation in the kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 does not properly implement the Urgent (aka out-of-band data) mechanism, which allows …
|
CWE-20
Improper Input Validation
|
CVE-2015-1105
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.2
|
|
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3012
|
-
5.0
|
MEDIUM
|
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 does not properly determine whether an IPv6 packet had a local origin, which allows remote attackers to bypass a…
|
CWE-20
Improper Input Validation
|
CVE-2015-1104
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.2
|
|
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3013
|
-
7.5
|
HIGH
|
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 makes routing changes in response to ICMP_REDIRECT messages, which allows remote attackers to cause a denial of …
|
CWE-20
Improper Input Validation
|
CVE-2015-1103
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.2
|
|
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3014
|
-
7.1
|
HIGH
|
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 does not properly handle TCP headers, which allows man-in-the-middle attackers to cause a denial of service via …
|
CWE-20
Improper Input Validation
|
CVE-2015-1102
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.2
|
|
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3015
|
-
6.9
|
MEDIUM
|
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corrupti…
|
NVD-CWE-noinfo
|
CVE-2015-1101
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.2
|
|
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3016
|
-
5.4
|
MEDIUM
|
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to cause a denial of service (out-of-bounds memory access) or obtain sensitive memory-content i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1100
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.2
|
|
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3017
|
-
4.0
|
MEDIUM
|
Race condition in the setreuid system-call implementation in the kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to cause a denial of service via a…
|
CWE-362
Race Condition
|
CVE-2015-1099
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.2
|
|
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3018
|
7.3
6.8
|
HIGH
Local
|
iWork in Apple iOS before 8.3 and Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted iWork file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1098
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
8.3
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3019
|
-
1.9
|
LOW
|
IOMobileFramebuffer in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app.
|
CWE-200
Information Exposure
|
CVE-2015-1097
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.2
|
|
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3020
|
-
1.9
|
LOW
|
IOHIDFamily in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app.
|
CWE-200
Information Exposure
|
CVE-2015-1096
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
8.2
|
|
|
2024-11-21 11:24
2015-04-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|