160 matches found
libimobiledevice usbmuxd 安全漏洞
libimobiledevice usbmuxd is a background daemon from libimobiledevice. A security vulnerability exists in libimobiledevice usbmuxd, which stems from path traversal and could lead to elevation of privilege...
EUVD-2013-2107
Malware in sbrugna...
EUVD-2017-15497
Malware in sbrugna...
EUVD-2017-15493
Malware in sbrugna...
EUVD-2017-15495
Malware in sbrugna...
EUVD-2017-15492
Malware in sbrugna...
EUVD-2017-14315
Malware in sbrugna...
EUVD-2017-14646
Malware in sbrugna...
EUVD-2017-16952
Malware in sbrugna...
EUVD-2017-15494
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2017-5209
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a...
Linux Distros Unpatched Vulnerability : CVE-2017-6436
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The parsestringnode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service memory allocation error via a crafted...
RHEL 7 : usbmuxd (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libimobiledevice: Sockets listening on INADDRANY CVE-2016-5104 Note that Nessus has not tested for this issue but h...
RHEL 6 : libimobiledevice (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libimobiledevice: Sockets listening on INADDRANY CVE-2016-5104 Note that Nessus has not tested for this issue but h...
RHEL 7 : libimobiledevice (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libimobiledevice: Sockets listening on INADDRANY CVE-2016-5104 Note that Nessus has not tested for this issue but h...
How to catch a wild triangle
In the beginning of 2023, thanks to our Kaspersky Unified Monitoring and Analysis Platform KUMA SIEM system, we noticed suspicious network activity that turned out to be an ongoing attack targeting the iPhones and iPads of our colleagues. The moment we understood that there was a clear pattern in...
In search of the Triangulation: triangle_check utility
In our initial blogpost about "Operation Triangulation", we published a comprehensive guide on how to manually check iOS device backups for possible indicators of compromise using MVT. This process takes time and requires manual search for several types of indicators. To automate this process, we...
com.bugvm:bugvm-compiler (>=1.0.0 <=1.2.9), com.bugvm:bugvm-dist (>=1.2.3 <=1.2.9) +27 more potentially affected by CVE-2016-15026 via com.googlecode.plist:dd-plist (>=1.0 <=1.16)
com.googlecode.plist:dd-plist MAVEN version =1.0, =1.0.0, =1.2.3, =1.2.3, =1.0.0, =0.0.1, =2.3.1-ios11, =2.3.1-ios11, =1.0.0-b1, =2.0.0, =2.3.2, =2.3.4, =2.3.1, =2.0.0, =1.2.0, =1.2.1 and more Source cves: CVE-2016-15026 Source advisory: OSV:GHSA-4JX2-HVQW-93J9...
SUSE CVE-2017-5209
The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via split encoded Apple Property List data...
SUSE CVE-2017-5545
The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via Apple Property List data that is too short...