|
3201
|
-
6.8
|
MEDIUM
|
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5197
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
7.0.6
|
|
|
2024-11-21 10:57
2013-12-19
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3202
|
-
6.8
|
MEDIUM
|
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5196
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
7.0.6
|
|
|
2024-11-21 10:57
2013-12-19
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3203
|
-
4.7
|
MEDIUM
|
The App Store component in Apple iOS before 7.0.4 does not properly enforce an intended transaction-time password requirement, which allows local users to complete a (1) App purchase or (2) In-App pu…
|
CWE-255
Credentials Management
|
CVE-2013-5193
|
cpe:2.3:o:apple:iphone_os:7.0:* cpe:2.3:o:apple:iphone_os:7.0.2:* cpe:2.3:o:apple:iphone_os:7.0.1:* cpe:2.3:o:…
|
|
7.0.3
|
|
|
2024-11-21 10:57
2013-11-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3204
|
-
3.3
|
LOW
|
Multiple race conditions in the Phone app in Apple iOS before 7.0.3 allow physically proximate attackers to bypass the locked state, and dial the telephone numbers in arbitrary Contacts entries, by v…
|
CWE-362
Race Condition
|
CVE-2013-5164
|
cpe:2.3:o:apple:iphone_os:7.0:* cpe:2.3:o:apple:iphone_os:7.0.1:* cpe:2.3:o:apple:iphone_os:*:*
|
|
7.0.2
|
|
|
2024-11-21 10:57
2013-10-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3205
|
-
2.1
|
LOW
|
Passcode Lock in Apple iOS before 7.0.3 on iPhone devices allows physically proximate attackers to bypass the passcode-failure disabled state by leveraging certain incorrect visibility of the passcod…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5162
|
cpe:2.3:o:apple:iphone_os:7.0:* cpe:2.3:o:apple:iphone_os:7.0.1:* cpe:2.3:o:apple:iphone_os:*:*
|
|
7.0.2
|
|
|
2024-11-21 10:57
2013-10-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3206
|
-
3.3
|
LOW
|
Passcode Lock in Apple iOS before 7.0.3 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by tapping the emerge…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5144
|
cpe:2.3:o:apple:iphone_os:7.0:* cpe:2.3:o:apple:iphone_os:7.0.1:* cpe:2.3:o:apple:iphone_os:*:*
|
|
7.0.2
|
|
|
2024-11-21 10:57
2013-10-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3207
|
-
4.4
|
MEDIUM
|
Passcode Lock in Apple iOS before 7.0.2 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement, and open the Camera app or rea…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5161
|
cpe:2.3:o:apple:iphone_os:7.0:* cpe:2.3:o:apple:iphone_os:*:*
|
|
7.0.1
|
|
|
2024-11-21 10:57
2013-09-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3208
|
-
3.3
|
LOW
|
Passcode Lock in Apple iOS before 7.0.2 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by making a series of…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5160
|
cpe:2.3:o:apple:iphone_os:7.0:* cpe:2.3:o:apple:iphone_os:*:*
|
|
7.0.1
|
|
|
2024-11-21 10:57
2013-09-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3209
|
-
4.3
|
MEDIUM
|
WebKit in Apple iOS before 7 allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive information about use of the window.webkitRequestAnimationFrame API via an IFRAM…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5159
|
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:…
|
|
6.1.4
|
|
|
2024-11-21 10:57
2013-09-19
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3210
|
-
2.1
|
LOW
|
The Social subsystem in Apple iOS before 7 does not properly restrict access to the cache of Twitter icons, which allows physically proximate attackers to obtain sensitive information about recent Tw…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5158
|
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:…
|
|
6.1.4
|
|
|
2024-11-21 10:57
2013-09-19
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|