|
290261
|
- |
|
apple
|
tvos
iphone_os
|
Video Driver in Apple iOS before 7.1 and Apple TV before 6.1 allows remote attackers to cause a denial of service (NULL pointer dereference and device hang) via a crafted video file with MPEG-4 encod…
|
NVD-CWE-Other
|
CVE-2014-1280
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290262
|
- |
|
apple
|
tvos
|
Apple TV before 6.1 does not properly restrict logging, which allows local users to obtain sensitive information by reading log data.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1279
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290263
|
- |
|
apple
|
iphone_os
tvos
|
The ptmx_get_ioctl function in the ARM kernel in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to gain privileges or cause a denial of service (out-of-bounds memory access and devic…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1278
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290264
|
- |
|
apple
|
iphone_os
|
IOKit HID Event in Apple iOS before 7.1 allows attackers to conduct user-action monitoring attacks against arbitrary apps via a crafted app that accesses an IOKit framework interface.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1276
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290265
|
- |
|
apple
|
iphone_os
tvos
|
Buffer overflow in ImageIO in Apple iOS before 7.1 and Apple TV before 6.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted JPEG2000 data…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1275
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290266
|
- |
|
apple
|
iphone_os
|
FaceTime in Apple iOS before 7.1 allows physically proximate attackers to obtain sensitive FaceTime contact information by using the lock screen for an invalid FaceTime call.
|
CWE-200
Information Exposure
|
CVE-2014-1274
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290267
|
- |
|
apple
|
tvos
iphone_os
|
dyld in Apple iOS before 7.1 and Apple TV before 6.1 allows attackers to bypass code-signing requirements by leveraging use of text-relocation instructions in a dynamic library.
|
CWE-20
Improper Input Validation
|
CVE-2014-1273
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290268
|
- |
|
apple
|
tvos
iphone_os
|
CrashHouseKeeping in Crash Reporting in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to change arbitrary file permissions by leveraging a symlink.
|
CWE-59
Link Following
|
CVE-2014-1272
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290269
|
- |
|
apple
|
iphone_os
tvos
|
CoreCapture in Apple iOS before 7.1 and Apple TV before 6.1 does not properly validate IOKit API calls, which allows attackers to cause a denial of service (assertion failure and device crash) via a …
|
CWE-20
Improper Input Validation
|
CVE-2014-1271
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290270
|
- |
|
apple
|
tvos
iphone_os
|
The Configuration Profiles component in Apple iOS before 7.1 and Apple TV before 6.1 does not properly evaluate the expiration date of a mobile configuration profile, which allows attackers to bypass…
|
CWE-20
Improper Input Validation
|
CVE-2014-1267
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
