4262 matches found
iphone-dos.txt
function Demo var shellcode; var addr; var fill; alert'attempting a crash!'; shellcode = unescape'%u0c0c'; fill = unescape'%ucccc'; addr = 0x02020202; var b = fill; while b.length...
Apple iPhone 1.1.2 Remote Denial of Service Exploit
No description provided by source. htmlbodyscript function Demo var shellcode; var addr; var fill; alert'attempting a crash!'; shellcode = unescape'%u0c0c'; fill = unescape'%ucccc'; addr = 0x02020202; var b = fill; while b.length = 0x40000 b+=b; var c = new Array; for var i =0; i36; i++ ci = ...
Apple iOS Mobile Safari - Memory Exhaustion Remote Denial of Service
Apple iOS Mobile Safari - Memory Exhaustion Remote Denial of Service source: https://www.securityfocus.com/bid/27442/info Apple iPhone is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a maliciously crafted webpage...
Apple iOS Mobile Safari - Memory Exhaustion Remote Denial of Service
source: https://www.securityfocus.com/bid/27442/info Apple iPhone is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a maliciously crafted webpage. Successful attacks cause a kernel panic, crashing the device. Given the...
Apple iPhone 1.1.2 Remote Denial of Service Exploit
Exploit for hardware platform in category dos / poc =================================================== Apple iPhone 1.1.2 Remote Denial of Service Exploit =================================================== function Demo var shellcode; var addr; var fill; alert'attempting a crash!'; shellcode =...
Apple iPhone Passcode Lock绕过安全限制漏洞
BUGTRAQ ID: 27297 CVECAN ID: CVE-2008-0034 Apple iPhone是苹果最新发布的智能手机。 iPhone的Passcode Lock功能允许用户锁定手机应用,除非输入了正确的密码,否则无法启动应用程序。但在处理紧急呼叫时的实现错误允许能够物理访问iPhone手机的用户无需输入密码便可以加载应用程序。 Apple iPhone 1.0 - 1.1.2 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.apple.com...
CVE-2008-0034
Unspecified vulnerability in Passcode Lock in Apple iPhone 1.0 through 1.1.2 allows users with physical access to execute applications without entering the passcode via vectors related to emergency calls...
CVE-2008-0034
The set of connected sources provides concrete details for CVE-2008-0034: Apple iPhone 1.0–1.1.2 Passcode Lock can be bypassed by a user with physical access through emergency-call handling, allowing execution of applications without entering the passcode. The affected software is the iPhone’s Pa...
CVE-2008-0034
Unspecified vulnerability in Passcode Lock in Apple iPhone 1.0 through 1.1.2 allows users with physical access to execute applications without entering the passcode via vectors related to emergency calls...
PT-2008-1697 · Apple · Iphone +3
Name of the Vulnerable Software and Affected Versions: Apple iPhone versions 1.0 through 1.1.2 Apple iPod touch versions 1.1 through 1.1.2 Apple Mac OS X versions 10.5 through 10.5.1 Description: The issue allows remote attackers to cause a denial of service or execute arbitrary code via a crafte...
Cross site scripting
WebKit in Safari in Apple Mac OS X 10.4.11 and 10.5.1, iPhone 1.0 through 1.1.2, and iPod touch 1.1 through 1.1.2 allows remote attackers to "navigate the subframes of any other page," which can be leveraged to conduct cross-site scripting XSS attacks and obtain sensitive information...
CVE-2007-5858
WebKit in Safari in Apple Mac OS X 10.4.11 and 10.5.1, iPhone 1.0 through 1.1.2, and iPod touch 1.1 through 1.1.2 allows remote attackers to "navigate the subframes of any other page," which can be leveraged to conduct cross-site scripting XSS attacks and obtain sensitive information...
CVE-2007-5858
WebKit in Safari in Apple Mac OS X 10.4.11 and 10.5.1, iPhone 1.0 through 1.1.2, and iPod touch 1.1 through 1.1.2 allows remote attackers to "navigate the subframes of any other page," which can be leveraged to conduct cross-site scripting XSS attacks and obtain sensitive information...
CVE-2007-5858
Affected software: WebKit/Safari on Mac OS X 10.4.11 and 10.5.1, iPhone 1.0–1.1.2, and iPod touch 1.1–1.1.2. Issue: remote attackers can navigate the subframes of other pages, enabling cross-site scripting (XSS) and potential information disclosure. Root cause: the vulnerability allows subframe n...
PT-2007-6818 · Apple · Iphone +2
Name of the Vulnerable Software and Affected Versions: Safari versions 10.4.11 and 10.5.1 iPhone versions 1.0 through 1.1.2 iPod touch versions 1.1 through 1.1.2 Description: The issue allows remote attackers to navigate the subframes of any other page, which can be leveraged to conduct cross-sit...
safari_libtiff.rb.txt
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require 'msf/core' module Msf class...
mobilemail_libtiff.rb.txt
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require 'msf/core' module Msf class...
vibrate.rb.txt
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require 'msf/core' module Msf module...
Cracking the iPhone (5 article series)
The last part of my iPhone-related blog entries was posted last night. The first article discusses the architecture and provides some useful shellcode for already-modified phones. http://blog.metasploit.com/2007/09/root-shell-in-my-pocket-and-maybe-yours.html The second article discusses the...
Code injection
Unspecified vulnerability in Safari on the Apple iPod touch aka iTouch and iPhone 1.1.1 allows user-assisted remote attackers to cause a denial of service application crash, and enable filesystem browsing by the local user, via a certain TIFF file...