|
290521
|
- |
|
apple
|
iphone_os
|
WebKit, as used in Apple iOS before 6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
|
CWE-119
CWE-399
Incorrect Access of Indexable Resource ('Range Error')
Resource Management Errors
|
CVE-2012-3747
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290522
|
- |
|
apple
|
iphone_os
|
UIWebView in UIKit in Apple iOS before 6 does not properly use the Data Protection feature, which allows context-dependent attackers to obtain cleartext file content by leveraging direct access to a …
|
CWE-310
Cryptographic Issues
|
CVE-2012-3746
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290523
|
- |
|
apple
|
iphone_os
|
Off-by-one error in Telephony in Apple iOS before 6 allows remote attackers to cause a denial of service (buffer overflow and connectivity outage) via a crafted user-data header in an SMS message.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3745
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290524
|
- |
|
apple
|
iphone_os
|
Telephony in Apple iOS before 6 uses an SMS message's return address as the displayed sender address, which allows remote attackers to spoof text communication via a message in which the return addre…
|
NVD-CWE-Other
|
CVE-2012-3744
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290525
|
- |
|
apple
|
iphone_os
|
The System Logs implementation in Apple iOS before 6 does not restrict /var/log access by sandboxed apps, which allows remote attackers to obtain sensitive information via a crafted app that reads lo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3743
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290526
|
- |
|
apple
|
iphone_os
|
Safari in Apple iOS before 6 does not properly restrict use of an unspecified Unicode character that looks similar to the https lock indicator, which allows remote attackers to spoof https connection…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3742
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290527
|
- |
|
apple
|
iphone_os
|
The Restrictions (aka Parental Controls) implementation in Apple iOS before 6 does not properly handle purchase attempts after a Disable Restrictions action, which allows local users to bypass an int…
|
CWE-287
Improper Authentication
|
CVE-2012-3741
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290528
|
- |
|
apple
|
iphone_os
|
The Passcode Lock implementation in Apple iOS before 6 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement via unspecified …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3740
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290529
|
- |
|
apple
|
iphone_os
|
The Passcode Lock implementation in Apple iOS before 6 allows physically proximate attackers to bypass an intended passcode requirement via vectors involving use of the camera.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3739
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290530
|
- |
|
apple
|
iphone_os
|
The Emergency Dialer screen in the Passcode Lock implementation in Apple iOS before 6 does not properly limit the dialing methods, which allows physically proximate attackers to bypass intended acces…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3738
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
