|
289621
|
- |
|
apple
|
mac_os_x
iphone_os
tvos
|
Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application that sends IP…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1356
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289622
|
- |
|
apple
|
tvos
mac_os_x
iphone_os
|
The IOKit implementation in the kernel in Apple iOS before 7.1.2 and Apple TV before 6.1.2, and in IOReporting in Apple OS X before 10.9.4, allows local users to cause a denial of service (NULL point…
|
NVD-CWE-Other
|
CVE-2014-1355
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289623
|
- |
|
apple
|
iphone_os
|
CoreGraphics in Apple iOS before 7.1.2 does not properly restrict allocation of stack memory for processing of XBM images, which allows remote attackers to execute arbitrary code or cause a denial of…
|
CWE-399
Resource Management Errors
|
CVE-2014-1354
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289624
|
- |
|
apple
|
iphone_os
|
Lock Screen in Apple iOS before 7.1.2 does not properly manage the telephony state in Airplane Mode, which allows physically proximate attackers to bypass the lock protection mechanism, and access a …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1353
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289625
|
- |
|
apple
|
iphone_os
|
Lock Screen in Apple iOS before 7.1.2 does not properly enforce the limit on failed passcode attempts, which makes it easier for physically proximate attackers to conduct brute-force passcode-guessin…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1352
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289626
|
- |
|
apple
|
iphone_os
|
Siri in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended lock-screen passcode requirement, and read a contact list, via a Siri request that refers to a contact ambig…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1351
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289627
|
- |
|
apple
|
iphone_os
|
Settings in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended iCloud password requirement, and turn off the Find My iPhone service, by leveraging incorrect state mana…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1350
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289628
|
- |
|
apple
|
iphone_os
|
Use-after-free vulnerability in Safari in Apple iOS before 7.1.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an invalid URL.
|
NVD-CWE-Other
|
CVE-2014-1349
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289629
|
- |
|
apple
|
iphone_os
|
Mail in Apple iOS before 7.1.2 advertises the availability of data protection for attachments but stores cleartext attachments under mobile/Library/Mail/, which makes it easier for physically proxima…
|
CWE-310
Cryptographic Issues
|
CVE-2014-1348
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289630
|
- |
|
apple
|
safari
iphone_os
|
WebKit in Apple iOS before 7.1.2 and Apple Safari before 6.1.5 and 7.x before 7.0.5 does not properly encode domain names in URLs, which allows remote attackers to spoof the address bar via a crafted…
|
NVD-CWE-Other
|
CVE-2014-1345
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
