|
297701
|
- |
|
apple
|
iphone_os
|
The DNAv4 protocol implementation in the DHCP component in Apple iOS before 6 sends Wi-Fi packets containing a MAC address of a host on a previously used network, which might allow remote attackers t…
|
CWE-200
Information Exposure
|
CVE-2012-3725
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297702
|
- |
|
apple
|
iphone_os
|
CFNetwork in Apple iOS before 6 does not properly identify the host portion of a URL, which allows remote attackers to obtain sensitive information by leveraging the construction of an HTTP request w…
|
CWE-200
Information Exposure
|
CVE-2012-3724
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297703
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Apple Mac OS X before 10.7.5 does not properly handle the bNbrPorts field of a USB hub descriptor, which allows physically proximate attackers to execute arbitrary code or cause a denial of service (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3723
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297704
|
- |
|
apple
|
mac_os_x
mac_os_x_server
iphone_os
|
The Sorenson codec in QuickTime in Apple Mac OS X before 10.7.5, and in CoreMedia in iOS before 6, accesses uninitialized memory locations, which allows remote attackers to execute arbitrary code or …
|
CWE-399
Resource Management Errors
|
CVE-2012-3722
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297705
|
- |
|
apple
|
mac_os_x
|
Profile Manager in Apple Mac OS X before 10.7.5 does not properly perform authentication for the Device Management private interface, which allows attackers to enumerate managed devices via unspecifi…
|
CWE-287
Improper Authentication
|
CVE-2012-3721
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297706
|
- |
|
apple
|
mac_os_x
|
Mobile Accounts in Apple Mac OS X before 10.7.5 and 10.8.x before 10.8.2 saves password hashes for external-account use even if external accounts are not enabled, which might allow remote attackers t…
|
CWE-255
Credentials Management
|
CVE-2012-3720
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297707
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Mail in Apple Mac OS X before 10.7.5 does not properly handle embedded web plugins, which allows remote attackers to execute arbitrary plugin code via an e-mail message that triggers the loading of a…
|
CWE-20
Improper Input Validation
|
CVE-2012-3719
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297708
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Apple Mac OS X before 10.7.5 and 10.8.x before 10.8.2 allows local users to read passwords entered into Login Window (aka LoginWindow) or Screen Saver Unlock by installing an input method that interc…
|
CWE-200
Information Exposure
|
CVE-2012-3718
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297709
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
CoreText in Apple Mac OS X 10.7.x before 10.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write or read) via a crafted text glyph.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3716
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297710
|
- |
|
apple
|
safari
|
Apple Safari before 6.0.1 makes http requests for https URIs in certain circumstances involving a paste into the address bar, which allows user-assisted remote attackers to obtain sensitive informati…
|
CWE-310
Cryptographic Issues
|
CVE-2012-3715
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
