211 matches found
Null pointer dereference
IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context or cause a denial of service NULL pointer dereference via an application that provides crafted key-mapping properties...
Heap overflow
Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties...
Design/Logic Flaw
An unspecified IOHIDFamily function in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking to prevent reading of kernel pointers, which allows attackers to bypass the ASLR protection mechanism via a crafted application...
CVE-2014-4380
Concretely, CVE-2014-4380 is tied to IOHIDFamily in macOS (OS X Yosemite 10.10.x up to 10.10.2). The issue is a heap buffer overflow in IOHIDFamily's handling of key-mapping properties that could allow a local user to execute arbitrary code with system privileges. Mitigation in the connected doc ...
CVE-2014-4379
An unspecified IOHIDFamily function in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking to prevent reading of kernel pointers, which allows attackers to bypass the ASLR protection mechanism via a crafted application...
CVE-2014-4404
Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties...
CVE-2014-4405
IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context or cause a denial of service NULL pointer dereference via an application that provides crafted key-mapping properties...
CVE-2014-4404
CVE-2014-4404 describes a heap-based buffer overflow in IOHIDFamily that affects Apple iOS prior to 8 and Apple TV prior to 7. The vulnerability occurs when parsing crafted key-mapping properties, enabling an attacker to execute arbitrary code in a privileged context via a user-space application....
CVE-2014-4404
Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assess...
PT-2014-5868 · Apple · Ios +1
Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 8 Apple TV versions prior to 7 Description: The issue is related to a heap-based buffer overflow in the IOHIDFamily component, allowing attackers to execute arbitrary code in a privileged context. This can be...
Apple Launches iOS 8, Fixes Dozens of Security Flaws
Apple has released iOS 8, a massive update to its mobile operating system, that includes fixes for more than 40 security vulnerabilities. Apple is touting iOS 8 as the biggest update to the software since it launched the App Store, and, aside from the security fixes, there are hundreds of new...