|
278321
|
- |
|
apple
|
tvos
iphone_os
mac_os_x
|
CoreGraphics in Apple iOS before 8 and Apple TV before 7 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4378
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278322
|
- |
|
apple
|
tvos
iphone_os
mac_os_x
|
Integer overflow in CoreGraphics in Apple iOS before 8 and Apple TV before 7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF docum…
|
CWE-189
Numeric Errors
|
CVE-2014-4377
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278323
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
tvos
iphone_os
|
Double free vulnerability in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service (device crash) via vectors related to Mach ports.
|
NVD-CWE-Other
|
CVE-2014-4375
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278324
|
- |
|
apple
|
mac_os_x
iphone_os
|
NSXMLParser in Foundation in Apple iOS before 8 allows attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an …
|
NVD-CWE-Other
|
CVE-2014-4374
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278325
|
5.5 |
MEDIUM
Local
|
apple
|
iphone_os
tvos
mac_os_x
|
The IntelAccelerator driver in the IOAcceleratorFamily subsystem in Apple iOS before 8 and Apple TV before 7 allows attackers to cause a denial of service (NULL pointer dereference and device restart…
|
NVD-CWE-Other
|
CVE-2014-4373
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278326
|
- |
|
apple
|
tvos
iphone_os
|
syslogd in the syslog subsystem in Apple iOS before 8 and Apple TV before 7 allows local users to change the permissions of arbitrary files via a symlink attack on an unspecified file.
|
CWE-59
Link Following
|
CVE-2014-4372
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278327
|
- |
|
apple
|
tvos
mac_os_x
iphone_os
|
The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does not properly initialize memory, which allows attackers to obtain sensitive memory-content and memory-la…
|
CWE-665
Improper Initialization
|
CVE-2014-4371
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278328
|
- |
|
apple
|
tvos
iphone_os
|
The IOAcceleratorFamily API implementation in Apple iOS before 8 and Apple TV before 7 allows attackers to cause a denial of service (NULL pointer dereference and device crash) via an application tha…
|
NVD-CWE-Other
|
CVE-2014-4369
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278329
|
- |
|
apple
|
iphone_os
|
The Accessibility subsystem in Apple iOS before 8 allows attackers to interfere with screen locking via vectors related to AssistiveTouch events.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4368
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278330
|
- |
|
apple
|
iphone_os
|
Apple iOS before 8 enables Voice Dial during all upgrade actions, which makes it easier for physically proximate attackers to launch unintended calls by speaking a telephone number.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4367
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
