EUVD-2015-5778

Malware in sbrugna...

EUVD-2011-3219

Malware in sbrugna...

EUVD-2011-0223

Malware in sbrugna...

iCloudBrutter - AppleID Bruteforce

iCloudBrutter is a simple python 3.x script to perform basic bruteforce attack againts AppleID. Usage of iCloudBrutter for attacking targets without prior mutual consent is illegal. iCloudBrutter developer not responsible to any damage caused by iCloudBrutter. Installation $ git clone...

CVE-2015-5832

The iTunes Store component in Apple iOS before 9 does not properly delete AppleID credentials from the keychain upon a signout action, which might allow physically proximate attackers to obtain sensitive information via unspecified vectors...

Information disclosure

The iTunes Store component in Apple iOS before 9 does not properly delete AppleID credentials from the keychain upon a signout action, which might allow physically proximate attackers to obtain sensitive information via unspecified vectors...

Apple Patches 'Find My iPhone' Vulnerability Which May Caused Celebrities Photo Leak

Apple has patched the security flaw in its Find My iPhone online service that may have allowed hackers to get access to a number of celebrities' private pictures leaked online. OVER 100 CELEBRITIES AFFECTED So far, I hope everybody have heard about probably the biggest digital exposure of persona...

Apple iPhone/iPad/iPod touch CVE-2013-0963验证绕过漏洞

Bugtraq ID:57572 CVE ID:CVE-2013-0963 Apple iOS是一款运行在苹果iPhone和iPod touch设备上的最新的操作系统。 Apple iOS身份识别服务存在一个安全漏洞，如果用户的AppleID证书验证失败，则用户的AppleID会假定为空字符串。如果属于不同用户的多系统进入这种状态，依赖此身份判断的应用程序会错误的扩展信任范围，可允许攻击者绕过基于证书的Apple ID验证。 0 Apple iOS 6.1之前版本 Apple iPhone/iPad/iPod touch 厂商解决方案 Apple iOS...

CVE-2013-0963

Identity Services in Apple iOS before 6.1 does not properly handle validation failures of AppleID certificates, which might allow physically proximate attackers to bypass authentication by leveraging an incorrect assignment of an empty string value to an AppleID...

Authentication flaw

Identity Services in Apple iOS before 6.1 does not properly handle validation failures of AppleID certificates, which might allow physically proximate attackers to bypass authentication by leveraging an incorrect assignment of an empty string value to an AppleID...

CVE-2011-3255

CFNetwork in Apple iOS before 5 stores AppleID credentials in an unspecified file, which makes it easier for remote attackers to obtain sensitive information via a crafted application...

CVE-2011-3255

CFNetwork in Apple iOS before 5 stores AppleID credentials in an unspecified file, which makes it easier for remote attackers to obtain sensitive information via a crafted application...

Design/Logic Flaw

App Store in Apple Mac OS X before 10.6.8 creates a log entry containing a user's AppleID password, which might allow local users to obtain sensitive information by reading a log file, as demonstrated by a log file that has non-default permissions...