Lucene search
+L

74 matches found

securityvulns
securityvulns
added 2015/03/16 12:0 a.m.82 views

APPLE-SA-2015-03-09-1 iOS 8.2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2015-03-09-1 iOS 8.2 iOS 8.2 is now available and addresses the following: CoreTelephony Available for: iPhone 4s and later, iPod touch 5th generation and later, iPad 2 and later Impact: A remote attacker can cause a device to unexpectedly...

9.3CVSS0.19633EPSS
Exploits1
NVD
NVD
added 2015/03/12 10:59 a.m.19 views

CVE-2015-1061

IOSurface in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages "type confusion" during serialized-object handling...

9.3CVSS6.7AI score0.04207EPSS
Exploits0References9
Prion
Prion
added 2015/03/12 10:59 a.m.28 views

Type confusion

IOSurface in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages "type confusion" during serialized-object handling...

9.3CVSS7.1AI score0.04207EPSS
Exploits0References9Affected Software3
CVE
CVE
added 2015/03/12 10:0 a.m.76 views

CVE-2015-1061

CVE-2015-1061 concerns IOSurface: a type confusion flaw in handling serialized objects that could allow a crafted app to execute arbitrary code with system/privileged privileges across Apple iOS versions prior to 8.2, OS X up to 10.10.2, and Apple TV before 7.1. The issue was addressed by Apple S...

9.3CVSS6.8AI score0.04207EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2015/03/12 10:0 a.m.33 views

CVE-2015-1061

IOSurface in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages "type confusion" during serialized-object handling...

6.6AI score0.04207EPSS
Exploits0References9
CNVD
CNVD
added 2015/03/12 12:0 a.m.22 views

Apple iOS IOSurface Type Obfuscation Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A type confusion vulnerability exists in IOSurface when Apple iOS handles serialized objects, which allows attackers to exploit the vulnerability to execute arbitrary code with system privileges...

9.3CVSS7.6AI score0.04207EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/03/10 12:0 a.m.39 views

Mac OS X Multiple Vulnerabilities (Security Update 2015-002)

The remote host is running a version of Mac OS X 10.8, 10.9, or 10.10 that does not have Security Update 2015-002 applied. This update contains several security-related fixes for the following components : - iCloud Keychain - IOAcceleratorFamily - IOSurface - machportkobject kernel interface -...

10CVSS6AI score0.19633EPSS
Exploits1References7
ThreatPost
ThreatPost
added 2010/08/11 7:43 p.m.36 views

Apple Zaps JailbreakMe Bugs in Record Time

Less than two weeks after exploits for a pair of serious security vulnerabilities were fitted into an automated JailbreakMe.com exploit, Apple has rushed out a patch to block the jailbreaking of iPhone, iPad and iPod Touch devices. The iOS 3.2.2 for iPad and iOS 4.0.2 iPhone and iPod Touch update...

9.3CVSS1AI score0.30653EPSS
Exploits8References1
CISA
CISA
added 2010/08/11 12:0 a.m.10 views

Apple Releases Updates for iPhone, iPod touch, and iPad

Apple has released iOS 4.0.2 for the iPhone and iPod touch and iOS 3.2.2 for the iPad to address vulnerabilities in the FreeType and IOSurface packages. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code or gain system privileges. iPhone and iPod touch users are...

7.8AI score
Exploits0References3
NVD
NVD
added 2010/08/05 6:17 p.m.25 views

CVE-2010-2973

Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe...

6.9CVSS6AI score0.00781EPSS
Exploits1References8
Prion
Prion
added 2010/08/05 6:17 p.m.21 views

Integer overflow

Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe...

6.9CVSS6.5AI score0.00781EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2010/08/05 6:0 p.m.48 views

CVE-2010-2973

CVE-2010-2973 is an integer overflow in the IOSurface handling of properties in Apple iOS before 4.0.2 (iPhone/iPod touch) and before 3.2.2 (iPad). The overflow could let a local user escalate privileges via crafted IOSurface properties, as demonstrated by JailbreakMe. Connected documents confirm...

6.9CVSS6.1AI score0.00781EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2010/08/05 6:0 p.m.25 views

CVE-2010-2973

Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe...

6AI score0.00781EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2010/08/05 12:0 a.m.5 views

PT-2010-4446 · Apple · Ios

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 4.0.2 on the iPhone and iPod touch Apple iOS versions prior to 3.2.2 on the iPad Description: The issue is related to an integer overflow in IOSurface, which allows local users to gain privileges. This can be...

6.9CVSS6.1AI score0.00781EPSS
Exploits1References10
Rows per page
Query Builder