4275 matches found
Fake Apple Phish Scam Targets iPhone Users
iPhone users beware – an ongoing phishing campaign impersonating Apple.com, attempts to trick users into submitting sensitive device information, with the scammers in a perfect position to use the data in a countless number of fraudulent variations. Read the full article. ZDNet...
On the Latest iPhone Attack, Patch Tuesday and More Fallout from Google
Dennis Fisher and Ryan Naraine discuss the latest iPhone attack, the upcoming Patch Tuesday and the never-ending fallout from the Google attack. SHOW NOTES iPhones Vulnerable to New Remote Attack Microsoft to Patch 26 Windows, Office Vulnerabilities Google Attack Was Tip of the Iceberg Subscribe ...
Apple iPhone OS USB控制消息信息泄露漏洞
BUGTRAQ ID: 38040 CVE ID: CVE-2010-0038 iPhone OS是苹果iPhone智能手机和iPod touch播放器所使用的操作系统。 在处理某些USB控制消息时存在内存破坏漏洞,能够物理访问设备的用户可以绕过通行码验证访问用户数据。 Apple iPhone OS 1.1 - 3.1.2 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.apple.com...
Apple Releases iPhone OS 3.1.3 and iPhone OS 3.1.3 for iPod touch
Apple has released iPhone OS 3.1.3 and iPhone OS 3.1.3 for iPod touch to address vulnerabilities in the CoreAudio, ImageIO, Recovery Mode and WebKit packages. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or obtain...
Apple iPhone cryptographic weakness
Certificate key usage is not checked during validation of .mobileconfig wireless autoconfiguration file...
iPhone certificate flaws
iPhones can be configured over the air by inviting users to download .mobileconfig files from a URL. This feature is used by large companies and universities to distribute various settings to a large number of iPhones. For security reasons, these files need to be cryptographically signed to be...
CVE-2010-0496
FreeBit ServersMan 3.1.5 on Apple iPhone OS 3.1.2, and iPhone OS for iPod touch, allows remote attackers to cause a denial of service daemon crash via a HEAD request for the / URI...
Design/Logic Flaw
FreeBit ServersMan 3.1.5 on Apple iPhone OS 3.1.2, and iPhone OS for iPod touch, allows remote attackers to cause a denial of service daemon crash via a HEAD request for the / URI...
Memory corruption
Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...
CVE-2010-0038
Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...
CVE-2010-0496
CVE-2010-0496 affects FreeBit ServersMan 3.1.5 on Apple iPhone OS 3.1.2 and iPhone OS for iPod touch. The vulnerability allows a remote attacker to cause a denial of service (daemon crash) by sending a HEAD request to the root URI ( / ). The public description specifies a network-accessible trigg...
CVE-2010-0038
Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...
CVE-2010-0038
CVE-2010-0038 affects Apple iPhone OS 1.0–3.1.2 and iPod touch OS 1.1–3.1.2. The issue is a memory corruption vulnerability triggered by a specific USB control message, allowing a physically proximate attacker to bypass the device lock and read/modify data. The vulnerability is documented as Reco...
CVE-2010-0038
Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...
CVE-2010-0496
FreeBit ServersMan 3.1.5 on Apple iPhone OS 3.1.2, and iPhone OS for iPod touch, allows remote attackers to cause a denial of service daemon crash via a HEAD request for the / URI...
Rogue iPhone Apps Explored at Black Hat
Lax security screening at Apple’s App Store and a design flaw are putting iPhone users at risk of downloading malicious apps that could steal data and spy on them, a Swiss researcher warns at Black Hat DC. Read the full article. cnet...
Apple Plugs Critical iPhone Security Holes
Apple has shipped a patch to cover five documented vulnerabilities that expose iPhone and iPod Touch users to malicious hacker attacks. The most serious flaw could allow remote code execution if an iPhone/iPod Touch user opens audio and image files. Here’s the skinny on the vulnerabilities being...
iPhones Vulnerable to New Remote Attack
There are several flaws in the way that the iPhone handles digital certificates which could lead to an attacker being able to create his own trusted certificate and entice users into downloading malicious files onto their iPhones. The attack is the end result of a number of different problems wit...
Mandriva Update for kdelibs4 MDVSA-2010:027 (kdelibs4)
Check for the Version of kdelibs4 OpenVAS Vulnerability Test Mandriva Update for kdelibs4 MDVSA-2010:027 kdelibs4 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Mandriva Update for kdelibs4 MDVSA-2010:027 (kdelibs4)
Check for the Version of kdelibs4 OpenVAS Vulnerability Test Mandriva Update for kdelibs4 MDVSA-2010:027 kdelibs4 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...