|
291621
|
- |
|
apple
|
tvos
|
Apple TV before 6.1 does not properly restrict logging, which allows local users to obtain sensitive information by reading log data.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1279
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291622
|
- |
|
apple
|
iphone_os
tvos
|
The ptmx_get_ioctl function in the ARM kernel in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to gain privileges or cause a denial of service (out-of-bounds memory access and devic…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1278
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291623
|
- |
|
apple
|
iphone_os
|
IOKit HID Event in Apple iOS before 7.1 allows attackers to conduct user-action monitoring attacks against arbitrary apps via a crafted app that accesses an IOKit framework interface.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1276
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291624
|
- |
|
apple
|
iphone_os
tvos
|
Buffer overflow in ImageIO in Apple iOS before 7.1 and Apple TV before 6.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted JPEG2000 data…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1275
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291625
|
- |
|
apple
|
iphone_os
|
FaceTime in Apple iOS before 7.1 allows physically proximate attackers to obtain sensitive FaceTime contact information by using the lock screen for an invalid FaceTime call.
|
CWE-200
Information Exposure
|
CVE-2014-1274
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291626
|
- |
|
apple
|
tvos
iphone_os
|
dyld in Apple iOS before 7.1 and Apple TV before 6.1 allows attackers to bypass code-signing requirements by leveraging use of text-relocation instructions in a dynamic library.
|
CWE-20
Improper Input Validation
|
CVE-2014-1273
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291627
|
- |
|
apple
|
tvos
iphone_os
|
CrashHouseKeeping in Crash Reporting in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to change arbitrary file permissions by leveraging a symlink.
|
CWE-59
Link Following
|
CVE-2014-1272
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291628
|
- |
|
apple
|
iphone_os
tvos
|
CoreCapture in Apple iOS before 7.1 and Apple TV before 6.1 does not properly validate IOKit API calls, which allows attackers to cause a denial of service (assertion failure and device crash) via a …
|
CWE-20
Improper Input Validation
|
CVE-2014-1271
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291629
|
- |
|
apple
|
tvos
iphone_os
|
The Configuration Profiles component in Apple iOS before 7.1 and Apple TV before 6.1 does not properly evaluate the expiration date of a mobile configuration profile, which allows attackers to bypass…
|
CWE-20
Improper Input Validation
|
CVE-2014-1267
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291630
|
- |
|
ibm
|
aix
|
ftpd in IBM AIX 7.1.1 before SP10 and 7.1.2 before SP5, when a Workload Partition (aka WPAR) for AIX 5.2 or 5.3 is used, allows remote authenticated users to bypass intended permission settings and m…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0899
|
2024-11-21 11:03 |
2014-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
