39 matches found
CVE-2018-4302
A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution...
EUVD-2018-16088
Malware in sbrugna...
EUVD-2017-16155
Malware in sbrugna...
CVE-2018-4302
A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution...
Null pointer dereference
A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution...
New iOS Jailbreak Tool Works on iPhone Models iOS 11 to iOS 13.5
A hacker team has released a new method to jailbreak iPhones that they claim uses a zero-day exploit that allows them to jailbreak iPhones running iOS 11 through Apple’s most recent version of its mobile operating system – iOS 13.5. Calling it a “big milestone for jailbreaking,” one of its...
Apple iOS/tvOS/iPadOS/watchOS/macOS CVE-2019-8848 Privilege Escalation Vulnerability
Description Apple iOS/tvOS/iPadOS/watchOS/macOS are prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on an affected system. Technologies Affected Apple Ipad Mini- Apple TV Apple Watch Apple iOS 10 Apple iOS 10.0.1 Apple iOS 10.1 Apple i...
Apple macOS 10.13 - workq_kernreturn Denial of Service (PoC)
Apple macOS 10.13 - workqkernreturn Denial of Service PoC / Exploit Title: MacOS 10.13 - 'workqkernreturn' Denial of Service PoC Date: 2018-07-30 Exploit Author: Fabiano Anemone Vendor Homepage: https://www.apple.com/ Version: iOS 11.4.1 / MacOS 10.13.6 Tested on: iOS / MacOS CVE: Not assigned...
Apple iOS 11.x & 12.x - Authentication Bypass Vulnerability
Document Title: =============== Apple iOS 11.x & 12.x - Authentication Bypass Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2161 View Video: https://www.youtube.com/watch?v=m9VMidADJcc Release Date: ============= 2018-10-26 Vulnerability Laboratory ID...
Apple iOS 11.x & 12.x - Authentication Bypass Vulnerability
Document Title: =============== Apple iOS 11.x & 12.x - Authentication Bypass Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2161 View Video: https://www.youtube.com/watch?v=m9VMidADJcc Release Date: ============= 2018-10-25 Vulnerability Laboratory ID...
XNU kernel heap overflow due to bad bounds checking in MPTCP(CVE-2018-4241)
mptcpusrconnectx is the handler for the connectx syscall for the APMULTIPATH socket family. The logic of this function fails to correctly handle source and destination sockaddrs which aren't AFINET or AFINET6: // verify salen for AFINET: if dst-safamily == AFINET && dst-salen !=...
XNU Kernel - Heap Overflow Due to Bad Bounds Checking in MPTCP
XNU Kernel - Heap Overflow Due to Bad Bounds Checking in MPTCP mptcpusrconnectx is the handler for the connectx syscall for the APMULTIPATH socket family. The logic of this function fails to correctly handle source and destination sockaddrs which aren't AFINET or AFINET6: // verify salen for...
XNU Kernel - Heap Overflow Due to Bad Bounds Checking in MPTCP Exploit
Exploit for multiple platform in category dos / poc mptcpusrconnectx is the handler for the connectx syscall for the APMULTIPATH socket family. The logic of this function fails to correctly handle source and destination sockaddrs which aren't AFINET or AFINET6: // verify salen for AFINET: if...
XNU Kernel - Heap Overflow Due to Bad Bounds Checking in MPTCP
mptcpusrconnectx is the handler for the connectx syscall for the APMULTIPATH socket family. The logic of this function fails to correctly handle source and destination sockaddrs which aren't AFINET or AFINET6: // verify salen for AFINET: if dst-safamily == AFINET && dst-salen !=...
Code injection
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Sandbox Profiles" component. It allows attackers to determine whether arbitrary files exist via a crafted app...
QR Code Bug in Apple iOS 11 Could Lead You to Malicious Sites
A new vulnerability has been disclosed in iOS Camera App that could be exploited to redirect users to a malicious website without their knowledge. The vulnerability affects Apple's latest iOS 11 mobile operating system for iPhone, iPad, and iPod touch devices and resides in the built-in QR code...
Apple Siri is the aeration privacy vulnerability: lock screen notifications directly read-vulnerability warning-the black bar safety net
! iOS 11, Apple introduced a new way to protect user privacy, the user through the iPhone's lock screen hide notification content, until the use of Touch ID or Face ID to unlock the device. But in fact, even if unable to unlock the phone, or is there a very simple way to read these hidden...
Cellebrite Unlocks iPhones for the US Government
Forbes reports that the Israeli company Cellebrite can probably unlock all iPhone models: Cellebrite, a Petah Tikva, Israel-based vendor that's become the U.S. government's company of choice when it comes to unlocking mobile devices, is this month telling customers its engineers currently have th...
Apple Tackles Cellebrite Unlock Claims, Sort Of
In the wake of claims that Israeli company Cellebrite has developed an unlocking tool for any iPhone, Apple is urging customers to upgrade to the latest version of iOS 11. Apple’s response falls well short of a full-throated debunk of the iPhone hack, but suggest some merit to the claim – hence a...
WhatsApp 2.17.52 Memory Corruption
!/usr/bin/env python -- coding: utf-8 -- Found this and more exploits on my open source security project: http://www.exploitpack.com Exploit Author: Juan Sacco at KPN Red Team - http://www.kpn.com Date and time of release: 11 October 2017 Tested on: iPhone 5/6s iOS 10.3.3 and 11 Description:...