298 matches found
Null pointer dereference
The IOKit implementation in the kernel in Apple iOS before 7.1.2 and Apple TV before 6.1.2, and in IOReporting in Apple OS X before 10.9.4, allows local users to cause a denial of service NULL pointer dereference and reboot via crafted API arguments...
CVE-2014-1355
The IOKit implementation in the kernel in Apple iOS before 7.1.2 and Apple TV before 6.1.2, and in IOReporting in Apple OS X before 10.9.4, allows local users to cause a denial of service NULL pointer dereference and reboot via crafted API arguments...
CVE-2014-1355
CVE-2014-1355 affects Apple devices via a NULL pointer dereference in IOKit/IOReporting when handling API arguments. A local attacker could trigger a denial of service (reboot). Affected versions include iOS prior to 7.1.2, Apple TV prior to 6.1.2, and OS X prior to 10.9.4. Remediation is to appl...
CVE-2014-1375
CVE-2014-1375 affects the Intel Graphics Driver on Apple OS X
CVE-2014-1375
Intel Graphics Driver in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object...
Apple TV < 6.1.1 Multiple Vulnerabilities
Binary data 8274.prm...
APPLE-SA-2014-04-22-1 Security Update 2014-002
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-04-22-1 Security Update 2014-002 Security Update 2014-002 is now available and addresses the following: CFNetwork HTTPProtocol Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.2...
(Pwn2Own\Pwn4Fun) Apple OS X IOKit Kernel Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within IOKit. The...
CVE-2014-1320
IOKit in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 places kernel pointers into an object data structure, which makes it easier for local users to bypass the ASLR protection mechanism by reading unspecified attributes of the object...
Design/Logic Flaw
IOKit in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 places kernel pointers into an object data structure, which makes it easier for local users to bypass the ASLR protection mechanism by reading unspecified attributes of the object...
CVE-2014-1320
IOKit in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 places kernel pointers into an object data structure, which makes it easier for local users to bypass the ASLR protection mechanism by reading unspecified attributes of the object...
CVE-2014-1320
CVE-2014-1320 affects Apple iOS prior to 7.1.1, OS X prior to 10.9.3/through 10.9.2, and Apple TV prior to 6.1.1. The root cause is kernel pointers stored in an IOKit object data structure, enabling a local attacker to read kernel pointers and bypass ASLR. Apple’s mitigations addressed the IOKit ...
Mac OS X Multiple Vulnerabilities (Security Update 2014-002)
The remote host is running a version of Mac OS X 10.7, 10.8, or 10.9 that does not have Security Update 2014-002 applied. This update contains several security-related fixes for the following components : - CFNetwork HTTPProtocl - CoreServicesUIAgent - FontParser - Heimdal Kerberos - ImageIO -...
CVE-2014-1276
IOKit HID Event in Apple iOS before 7.1 allows attackers to conduct user-action monitoring attacks against arbitrary apps via a crafted app that accesses an IOKit framework interface...
Design/Logic Flaw
IOKit HID Event in Apple iOS before 7.1 allows attackers to conduct user-action monitoring attacks against arbitrary apps via a crafted app that accesses an IOKit framework interface...
Design/Logic Flaw
CoreCapture in Apple iOS before 7.1 and Apple TV before 6.1 does not properly validate IOKit API calls, which allows attackers to cause a denial of service assertion failure and device crash via a crafted app...
CVE-2014-1276
IOKit HID Event in Apple iOS before 7.1 allows attackers to conduct user-action monitoring attacks against arbitrary apps via a crafted app that accesses an IOKit framework interface...
CVE-2014-1276
CVE-2014-1276 affects Apple iOS prior to 7.1 via the IOKit HID Event interface. The vulnerability allows a crafted app to monitor user actions across arbitrary apps by accessing an IOKit framework interface, due to insufficient access controls in IOKit. Apple addressed this in iOS 7.1 (patch link...
CVE-2014-1271
CVE-2014-1271 concerns CoreCapture in Apple iOS prior to 7.1 and Apple TV prior to 6.1. The vulnerability arises because CoreCapture does not properly validate IOKit API calls, which can allow a crafted app to trigger a denial of service via assertion failure and device crash. The issue centers o...
Apple iOS < 7.1 Multiple Vulnerabilities
Binary data 8155.prm...