Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2024 and is owned by Tenable, Inc. or an Affiliate thereof.APPLE_IOS_101_CHECK.NBIN
HistoryOct 27, 2016 - 12:00 a.m.

Apple iOS < 10.1 Multiple Vulnerabilities

2016-10-2700:00:00
This script is Copyright (C) 2016-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
JSON

The version of iOS running on the mobile device is prior to 10.1. It is, therefore, affected by multiple vulnerabilities :

  • A flaw exists in the FaceTime component when handling relayed calls due to inconsistencies in the user interface. A man-in-the-middle attacker can exploit this issue to cause a relayed call to continue to transmit audio while the call appears to be terminated.
    (CVE-2016-4635)

  • An out-of-bounds read error exists in the FontParser component when handling specially crafted font files that allows an unauthenticated, remote attacker to disclose sensitive information. (CVE-2016-4660)

  • An unspecified flaw exists in the Sandbox Profiles component that allows a local attacker, via a specially crafted application, to disclose the metadata of photo directories. (CVE-2016-4664)

  • An unspecified flaw exists in the Sandbox Profiles component that allows a local attacker, via a specially crafted application, to disclose the metadata of audio recordings. (CVE-2016-4665)

  • Multiple memory corruption issues exist in Webkit due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit these to execute arbitrary code. (CVE-2016-4666, CVE-2016-4677)

  • Multiple unspecified flaws exist in the System Boot component, within MIG generated code, due to improper validation of input. A local attacker can exploit these to terminate the system or execute arbitrary code with elevated privileges. (CVE-2016-4669)

  • A flaw exists in the Security component due to the program logging the length of passwords. A local attacker can exploit this to disclose sensitive information. (CVE-2016-4670)

  • A memory corruption issue exists in the CoreGraphics component when handling specially crafted JPEG files. An unauthenticated, remote attacker can exploit this, via a specially crafted file, to cause a denial of service condition or the execution of arbitrary code.
    (CVE-2016-4673)

  • An unspecified logic issue exists in libxpc that allows a local attacker to execute arbitrary code with root privileges. (CVE-2016-4675)

  • A flaw exists in libarchive due to improper path validation when creating temporary files during archive extraction. An unauthenticated, remote attacker can exploit this, via a symlink attack, to overwrite arbitrary files. (CVE-2016-4679)

  • An unspecified flaw exists in the Kernel component due to improper sanitization of input. A local attacker can exploit this to disclose kernel memory contents.
    (CVE-2016-4680)

  • A flaw exists in the Contacts component due to a failure to revoke an application’s access to the Address Book after its access has been removed in Settings. A local attacker can exploit this to cause access to persist after it should have been removed. (CVE-2016-4686)

  • A flaw exists in the CFNetworks component when handling proxy credentials that allows a man-in-the-middle attacker to disclose sensitive user information.
    (CVE-2016-7579)

Binary data apple_ios_101_check.nbin
VendorProductVersionCPE
appleiphone_oscpe:/o:apple:iphone_os

References

Related

nessus 10
apple 14
threatpost 1
thn 2
openvas 6
cve 14
prion 14
ubuntucve 1
zdi 1
zdt 2
packetstorm 1
metasploit 1
cert 1
ubuntu 1
mageia 1
nessus
nessus
Apple TV < 10.0.1 Multiple Vulnerabilities
2016-11-08 00:00:00
Apple TV < 10.0.1 Multiple Vulnerabilities
2016-10-27 00:00:00
Apple iOS < 10.1 Multiple Vulnerabilities
2016-11-08 00:00:00
apple
apple
About the security content of tvOS 10.0.1
2016-10-24 00:00:00
About the security content of tvOS 10.0.1 - Apple Support
2017-01-23 05:36:03
About the security content of watchOS 3.1 - Apple Support
2017-01-23 05:36:06
threatpost
threatpost
Apple Patches iOS Flaw Exploitable by Malicious JPEG
2016-10-25 12:47:34
thn
thn
Warning! Your iPhone Can Get Hacked Just by Opening a JPEG Image, PDF or Font File
2016-10-24 22:11:00
Beware! Your iPhone Can Be Hacked Remotely With Just A Message
2016-07-20 01:14:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities-03 (Feb 2017)
2017-02-28 00:00:00
Apple Safari Code Execution And Information Disclosure Vulnerabilities (Feb 2017)
2017-02-22 00:00:00
Apple Mac OS X Multiple Vulnerabilities-04 (Feb 2017)
2017-02-28 00:00:00
cve
cve
CVE-2016-4673
2017-02-20 08:59:00
CVE-2016-7579
2017-02-20 08:59:00
CVE-2016-4675
2017-02-20 08:59:00
prion
prion
Session fixation
2017-02-20 08:59:00
Memory corruption
2017-02-20 08:59:00
Memory corruption
2017-02-20 08:59:00
ubuntucve
ubuntucve
CVE-2016-4666
2016-12-01 00:00:00
zdi
zdi
Apple Safari JavaScriptCore Array Out-Of-Bounds Access Remote Code Execution Vulnerability
2016-11-04 00:00:00
zdt
zdt
OS X / iOS - mach_ports_register Multiple Memory Safety Issues Exploit
2016-11-01 00:00:00
Safari Webkit For iOS 7.1.2 JIT Optimization Bug Exploit
2020-08-15 00:00:00
packetstorm
packetstorm
Safari Webkit For iOS 7.1.2 JIT Optimization Bug
2020-08-14 00:00:00
metasploit
metasploit
Safari Webkit JIT Exploit for iOS 7.1.2
2020-07-27 07:05:31
cert
cert
HTTP CONNECT and 407 Proxy Authentication Required messages are not integrity protected
2016-08-15 00:00:00
ubuntu
ubuntu
WebKitGTK+ vulnerabilities
2017-01-10 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2017-03-02 18:11:17
JSON
Related for APPLE_IOS_101_CHECK.NBIN
nessus10apple14threatpost1thn2openvas6cve14prion14ubuntucve1zdi1zdt2packetstorm1metasploit1cert1ubuntu1mageia1