CVE-2017-2448

An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. The issue involves the "Keychain" component. It allows man-in-the-middle attackers to bypass an iCloud Keychain secret protection mechanism by leveraging...

CVE-2017-2385

An issue was discovered in certain Apple products. Safari before 10.1 is affected. The issue involves the "Safari Login AutoFill" component. It allows local users to obtain access to locked keychain items via unspecified vectors...

CVE-2017-2385

CVE-2017-2385 affects Apple Safari ( Safari Login AutoFill component ). The issue allows a local attacker to access locked keychain items via unspecified vectors. It is listed under Safari 10.1 fixes; the Apple security content for Safari 10.1 documents multiple keychain and WebKit memory/validat...

CVE-2017-2448

CVE-2017-2448 is an Apple Keychain vulnerability affecting iOS < 10.3, macOS < 10.12.4, and tvOS

Apple Safari Multiple Vulnerabilities (HT207600)

Apple Safari is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:safari"; ifdescription...

About the security content of Safari 10.1

About the security content of Safari 10.1 This document describes the security content of Safari 10.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

idb - iOS App Security Assessment Tool

idb is a tool to simplify some common tasks for iOS app security assessments and research. Please see the Documentation for a more detailed summary of each function. Features Assessment Setup SSH port forwarding Installation of helper utilities App Information Bundle information Registered URL...

Apple TV < 9.1 Multiple Vulnerabilities

Binary data 9433.prm...

Apple Mac OS X Multiple Vulnerabilities-01 (Dec 2015)

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Apple OS X Keychain Server Forgery Bypass Vulnerability

Apple OS X is an operating system developed by Apple Inc. Apple OS X suffers from a Keychain Server forgery vulnerability that allows an attacker to exploit the vulnerability to spoof the Keychain Server server...

Apple OS X Keychain Entry Access Vulnerability

Apple OS X is an operating system developed by Apple Inc. Apple OS X has a security vulnerability that allows an attacker to exploit the vulnerability to access the target user's Keychain entries and obtain sensitive information...

CVE-2015-7058

Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 improperly validate keychain item ACLs, which allows attackers to obtain access to keychain items via a crafted app...

CVE-2015-7045

Keychain Access in Apple OS X before 10.11.2 and tvOS before 9.1 improperly interacts with Keychain Agent, which allows attackers to spoof the Keychain Server via unspecified vectors...

Design/Logic Flaw

Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 improperly validate keychain item ACLs, which allows attackers to obtain access to keychain items via a crafted app...

Design/Logic Flaw

Keychain Access in Apple OS X before 10.11.2 and tvOS before 9.1 improperly interacts with Keychain Agent, which allows attackers to spoof the Keychain Server via unspecified vectors...

CVE-2015-7058

Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 improperly validate keychain item ACLs, which allows attackers to obtain access to keychain items via a crafted app...

CVE-2015-7058

CVE-2015-7058 affects Apple iOS &lt; 9.2, OS X &lt; 10.11.2, and tvOS

CVE-2015-7045

Keychain Access in Apple OS X before 10.11.2 and tvOS before 9.1 improperly interacts with Keychain Agent, which allows attackers to spoof the Keychain Server via unspecified vectors...

CVE-2015-7045

The CVE-2015-7045 entry describes a vulnerability in Keychain Access on Apple OS X before 10.11.2 and tvOS before 9.1, where Keychain Access interacts with Keychain Agent in a way that allows an attacker to spoof the Keychain Server via unspecified vectors. Affected software is Apple OS X prior t...

Mac OS X Multiple Vulnerabilities (Security Updates 2015-005 / 2015-008)

The remote host is running a version of Mac OS X 10.9.5 or 10.10.5 that is missing Security Update 2015-005 or 2015-008. It is, therefore, affected by multiple vulnerabilities in the following components : - apachemodphp - AppSandbox - Bluetooth - CFNetwork HTTPProtocol - Compression -...