|
289451
|
- |
|
apple
|
mac_os_x
tvos
iphone_os
|
WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4410
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289452
|
- |
|
apple
|
iphone_os
|
WebKit in Apple iOS before 8 makes it easier for remote attackers to track users during private browsing via a crafted web site that reads HTML5 application-cache data that had been stored during nor…
|
CWE-200
Information Exposure
|
CVE-2014-4409
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289453
|
- |
|
apple
|
tvos
iphone_os
mac_os_x
|
The rt_setgate function in the kernel in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service (out-of-bounds read and device crash) via a crafte…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4408
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289454
|
3.3 |
LOW
Local
|
apple
|
tvos
iphone_os
mac_os_x
|
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly initialize kernel memory, which allows attackers to obtain sensitive memory-content information via an application that makes craft…
|
CWE-200
Information Exposure
|
CVE-2014-4407
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289455
|
- |
|
apple
|
iphone_os
tvos
mac_os_x
|
IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an application t…
|
NVD-CWE-Other
|
CVE-2014-4405
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289456
|
- |
|
apple
|
iphone_os
tvos
mac_os_x
|
Integer overflow in IOKit in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted API arguments.
|
CWE-189
Numeric Errors
|
CVE-2014-4389
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289457
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
iphone_os
tvos
|
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly validate IODataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via an application t…
|
CWE-20
Improper Input Validation
|
CVE-2014-4388
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289458
|
- |
|
apple
|
iphone_os
|
Race condition in the App Installation feature in Apple iOS before 8 allows local users to gain privileges and install unverified apps by leveraging /tmp write access.
|
CWE-362
Race Condition
|
CVE-2014-4386
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289459
|
- |
|
apple
|
iphone_os
|
Directory traversal vulnerability in the App Installation feature in Apple iOS before 8 allows local users to install unverified apps by triggering code-signature validation of an unintended bundle.
|
CWE-22
Path Traversal
|
CVE-2014-4384
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289460
|
- |
|
apple
|
iphone_os
tvos
|
The Assets subsystem in Apple iOS before 8 and Apple TV before 7 allows man-in-the-middle attackers to spoof a device's update status via a crafted Last-Modified HTTP response header.
|
CWE-20
Improper Input Validation
|
CVE-2014-4383
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
