Lucene search
+L

4275 matches found

ThreatPost
ThreatPost
added 2010/02/11 2:25 p.m.14 views

Fake Apple Phish Scam Targets iPhone Users

iPhone users beware – an ongoing phishing campaign impersonating Apple.com, attempts to trick users into submitting sensitive device information, with the scammers in a perfect position to use the data in a countless number of fraudulent variations. Read the full article. ZDNet...

2.5AI score
Exploits0References2
ThreatPost
ThreatPost
added 2010/02/05 7:20 p.m.16 views

On the Latest iPhone Attack, Patch Tuesday and More Fallout from Google

Dennis Fisher and Ryan Naraine discuss the latest iPhone attack, the upcoming Patch Tuesday and the never-ending fallout from the Google attack. SHOW NOTES iPhones Vulnerable to New Remote Attack Microsoft to Patch 26 Windows, Office Vulnerabilities Google Attack Was Tip of the Iceberg Subscribe ...

2.4AI score
Exploits0References8
seebug.org
seebug.org
added 2010/02/04 12:0 a.m.30 views

Apple iPhone OS USB控制消息信息泄露漏洞

BUGTRAQ ID: 38040 CVE ID: CVE-2010-0038 iPhone OS是苹果iPhone智能手机和iPod touch播放器所使用的操作系统。 在处理某些USB控制消息时存在内存破坏漏洞,能够物理访问设备的用户可以绕过通行码验证访问用户数据。 Apple iPhone OS 1.1 - 3.1.2 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.apple.com...

4.6CVSS6.4AI score0.00363EPSS
Exploits1
CISA
CISA
added 2010/02/04 12:0 a.m.14 views

Apple Releases iPhone OS 3.1.3 and iPhone OS 3.1.3 for iPod touch

Apple has released iPhone OS 3.1.3 and iPhone OS 3.1.3 for iPod touch to address vulnerabilities in the CoreAudio, ImageIO, Recovery Mode and WebKit packages. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or obtain...

7.5AI score
Exploits0References1
securityvulns
securityvulns
added 2010/02/04 12:0 a.m.25 views

Apple iPhone cryptographic weakness

Certificate key usage is not checked during validation of .mobileconfig wireless autoconfiguration file...

2.3AI score
Exploits0References1
securityvulns
securityvulns
added 2010/02/04 12:0 a.m.31 views

iPhone certificate flaws

iPhones can be configured over the air by inviting users to download .mobileconfig files from a URL. This feature is used by large companies and universities to distribute various settings to a large number of iPhones. For security reasons, these files need to be cryptographically signed to be...

0.6AI score
Exploits0
NVD
NVD
added 2010/02/03 7:30 p.m.18 views

CVE-2010-0496

FreeBit ServersMan 3.1.5 on Apple iPhone OS 3.1.2, and iPhone OS for iPod touch, allows remote attackers to cause a denial of service daemon crash via a HEAD request for the / URI...

5CVSS6.3AI score0.06263EPSS
Exploits0References3
Prion
Prion
added 2010/02/03 7:30 p.m.14 views

Design/Logic Flaw

FreeBit ServersMan 3.1.5 on Apple iPhone OS 3.1.2, and iPhone OS for iPod touch, allows remote attackers to cause a denial of service daemon crash via a HEAD request for the / URI...

5CVSS6.8AI score0.06263EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2010/02/03 7:30 p.m.24 views

Memory corruption

Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...

4.6CVSS6.6AI score0.00363EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2010/02/03 7:30 p.m.33 views

CVE-2010-0038

Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...

4.6CVSS6.2AI score0.00363EPSS
Exploits1References4
CVE
CVE
added 2010/02/03 7:0 p.m.39 views

CVE-2010-0496

CVE-2010-0496 affects FreeBit ServersMan 3.1.5 on Apple iPhone OS 3.1.2 and iPhone OS for iPod touch. The vulnerability allows a remote attacker to cause a denial of service (daemon crash) by sending a HEAD request to the root URI ( / ). The public description specifies a network-accessible trigg...

5CVSS6.5AI score0.06263EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2010/02/03 7:0 p.m.11 views

CVE-2010-0038

Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...

6.6AI score0.00363EPSS
Exploits1References4
CVE
CVE
added 2010/02/03 7:0 p.m.71 views

CVE-2010-0038

CVE-2010-0038 affects Apple iPhone OS 1.0–3.1.2 and iPod touch OS 1.1–3.1.2. The issue is a memory corruption vulnerability triggered by a specific USB control message, allowing a physically proximate attacker to bypass the device lock and read/modify data. The vulnerability is documented as Reco...

4.6CVSS6.3AI score0.00363EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2010/02/03 7:0 p.m.33 views

CVE-2010-0038

Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...

6.2AI score0.00363EPSS
Exploits1References4
Cvelist
Cvelist
added 2010/02/03 7:0 p.m.23 views

CVE-2010-0496

FreeBit ServersMan 3.1.5 on Apple iPhone OS 3.1.2, and iPhone OS for iPod touch, allows remote attackers to cause a denial of service daemon crash via a HEAD request for the / URI...

6.3AI score0.06263EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2010/02/03 6:12 p.m.11 views

Rogue iPhone Apps Explored at Black Hat

Lax security screening at Apple’s App Store and a design flaw are putting iPhone users at risk of downloading malicious apps that could steal data and spy on them, a Swiss researcher warns at Black Hat DC. Read the full article. cnet...

1.6AI score
Exploits0References1
ThreatPost
ThreatPost
added 2010/02/02 7:5 p.m.36 views

Apple Plugs Critical iPhone Security Holes

Apple has shipped a patch to cover five documented vulnerabilities that expose iPhone and iPod Touch users to malicious hacker attacks. The most serious flaw could allow remote code execution if an iPhone/iPod Touch user opens audio and image files. Here’s the skinny on the vulnerabilities being...

9.3CVSS0.0895EPSS
Exploits6References1
ThreatPost
ThreatPost
added 2010/02/02 6:4 p.m.10 views

iPhones Vulnerable to New Remote Attack

There are several flaws in the way that the iPhone handles digital certificates which could lead to an attacker being able to create his own trusted certificate and entice users into downloading malicious files onto their iPhones. The attack is the end result of a number of different problems wit...

7.8AI score
Exploits0References4
OpenVAS
OpenVAS
added 2010/01/29 12:0 a.m.43 views

Mandriva Update for kdelibs4 MDVSA-2010:027 (kdelibs4)

Check for the Version of kdelibs4 OpenVAS Vulnerability Test Mandriva Update for kdelibs4 MDVSA-2010:027 kdelibs4 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

9.3CVSS6.9AI score0.28167EPSS
Exploits57References2
OpenVAS
OpenVAS
added 2010/01/29 12:0 a.m.41 views

Mandriva Update for kdelibs4 MDVSA-2010:027 (kdelibs4)

Check for the Version of kdelibs4 OpenVAS Vulnerability Test Mandriva Update for kdelibs4 MDVSA-2010:027 kdelibs4 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

9.3CVSS0.3AI score0.28167EPSS
Exploits57References2
Rows per page
Query Builder