|
276791
|
- |
|
apple
|
iphone_os
|
Apple iOS before 9 allows attackers to obtain sensitive information about inter-app communication via a crafted app that conducts an interception attack involving an unspecified URL scheme.
|
CWE-200
Information Exposure
|
CVE-2015-5835
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276792
|
- |
|
apple
|
iphone_os
watchos
|
IOAcceleratorFamily in Apple iOS before 9 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.
|
CWE-200
Information Exposure
|
CVE-2015-5834
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276793
|
- |
|
apple
|
iphone_os
|
The iTunes Store component in Apple iOS before 9 does not properly delete AppleID credentials from the keychain upon a signout action, which might allow physically proximate attackers to obtain sensi…
|
CWE-200
Information Exposure
|
CVE-2015-5832
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276794
|
- |
|
apple
|
mac_os_x
iphone_os
|
NetworkExtension in the kernel in Apple iOS before 9 does not properly initialize an unspecified data structure, which allows attackers to obtain sensitive memory-layout information via a crafted app.
|
CWE-200
Information Exposure
|
CVE-2015-5831
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276795
|
- |
|
apple
|
iphone_os
watchos
|
Data Detectors Engine in Apple iOS before 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5829
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276796
|
- |
|
apple
|
safari
iphone_os
|
WebKit in Apple iOS before 9 allows remote attackers to bypass the Same Origin Policy and obtain an object reference via vectors involving a (1) custom event, (2) message event, or (3) pop state even…
|
CWE-200
Information Exposure
|
CVE-2015-5827
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276797
|
- |
|
apple
|
safari
iphone_os
|
WebKit in Apple iOS before 9 does not properly select the cases in which a Cascading Style Sheets (CSS) document is required to have the text/css content type, which allows remote attackers to bypass…
|
CWE-284
Improper Access Control
|
CVE-2015-5826
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276798
|
- |
|
apple
|
safari
iphone_os
|
WebKit in Apple iOS before 9 does not properly restrict the availability of Performance API times, which allows remote attackers to obtain sensitive information about the browser history, mouse movem…
|
CWE-200
Information Exposure
|
CVE-2015-5825
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276799
|
- |
|
apple
|
watchos
mac_os_x
iphone_os
|
The NSURL implementation in the CFNetwork SSL component in Apple iOS before 9 does not properly verify X.509 certificates from SSL servers after a certificate change, which allows man-in-the-middle a…
|
CWE-310
Cryptographic Issues
|
CVE-2015-5824
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276800
|
- |
|
apple
|
iphone_os
itunes
safari
|
WebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5823
|
2024-11-21 11:33 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
