|
286251
|
- |
|
apple
|
iphone_os
|
Race condition in the App Installation feature in Apple iOS before 8 allows local users to gain privileges and install unverified apps by leveraging /tmp write access.
|
CWE-362
Race Condition
|
CVE-2014-4386
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286252
|
- |
|
apple
|
iphone_os
|
Directory traversal vulnerability in the App Installation feature in Apple iOS before 8 allows local users to install unverified apps by triggering code-signature validation of an unintended bundle.
|
CWE-22
Path Traversal
|
CVE-2014-4384
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286253
|
- |
|
apple
|
iphone_os
tvos
|
The Assets subsystem in Apple iOS before 8 and Apple TV before 7 allows man-in-the-middle attackers to spoof a device's update status via a crafted Last-Modified HTTP response header.
|
CWE-20
Improper Input Validation
|
CVE-2014-4383
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286254
|
- |
|
apple
|
mac_os_x
iphone_os
tvos
|
Libnotify in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code as root via a crafted application.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4381
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286255
|
- |
|
apple
|
tvos
iphone_os
mac_os_x
|
The IOHIDFamily kernel extension in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code in the kernel's context…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4380
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286256
|
- |
|
apple
|
tvos
mac_os_x
iphone_os
|
An unspecified IOHIDFamily function in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking to prevent reading of kernel pointers, which allows attackers to bypass the ASLR protectio…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4379
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286257
|
- |
|
apple
|
tvos
iphone_os
mac_os_x
|
CoreGraphics in Apple iOS before 8 and Apple TV before 7 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4378
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286258
|
- |
|
apple
|
tvos
iphone_os
mac_os_x
|
Integer overflow in CoreGraphics in Apple iOS before 8 and Apple TV before 7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF docum…
|
CWE-189
Numeric Errors
|
CVE-2014-4377
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286259
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
tvos
iphone_os
|
Double free vulnerability in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service (device crash) via vectors related to Mach ports.
|
NVD-CWE-Other
|
CVE-2014-4375
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286260
|
- |
|
apple
|
mac_os_x
iphone_os
|
NSXMLParser in Foundation in Apple iOS before 8 allows attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an …
|
NVD-CWE-Other
|
CVE-2014-4374
|
2024-11-21 11:10 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
