14 matches found
EUVD-2015-3761
Malware in sbrugna...
Apple watchOS 安全漏洞
Apple watchOS is an operating system for smartwatches from Apple. A security vulnerability exists in watchOS, which originates in the MobileInstallation component. A local user can modify protected portions of the file system and escalate privileges. The vulnerability allows a local user to...
Apple iOS < 8.4.1 Multiple Vulnerabilities
Binary data 8978.prm...
CVE-2015-5770
MobileInstallation in Apple iOS before 8.4.1 does not ensure the uniqueness of universal provisioning profile bundle IDs, which allows attackers to replace arbitrary extensions via a crafted enterprise app...
Information disclosure
MobileInstallation in Apple iOS before 8.4.1 does not ensure the uniqueness of universal provisioning profile bundle IDs, which allows attackers to replace arbitrary extensions via a crafted enterprise app...
CVE-2015-5770
CVE-2015-5770 affects Apple iOS prior to 8.4.1 in MobileInstallation. The vulnerability stems from non-unique universal provisioning profile bundle IDs, enabling an attacker to replace extensions for other apps via a crafted enterprise app. Affected component: MobileInstallation logic handling un...
CVE-2015-5770
MobileInstallation in Apple iOS before 8.4.1 does not ensure the uniqueness of universal provisioning profile bundle IDs, which allows attackers to replace arbitrary extensions via a crafted enterprise app...
Apple iOS < 8.4.1 Multiple Vulnerabilities
Binary data appleios841check.nbin...
CVE-2015-3725
MobileInstallation in Apple iOS before 8.4 does not ensure the uniqueness of Watch bundle IDs, which allows attackers to cause a denial of service ID collision and Watch launch outage via a crafted universal provisioning profile app...
CVE-2015-3725
CVE-2015-3725 affects MobileInstallation in iOS
CVE-2014-4493
The app-installation functionality in MobileInstallation in Apple iOS before 8.1.3 allows attackers to obtain control of the local app container by leveraging access to an enterprise distribution certificate for signing a crafted app...
Design/Logic Flaw
The app-installation functionality in MobileInstallation in Apple iOS before 8.1.3 allows attackers to obtain control of the local app container by leveraging access to an enterprise distribution certificate for signing a crafted app...
CVE-2014-4493
CVE-2014-4493 affects Apple iOS prior to 8.1.3. The vulnerability exists in the app-installation flow of MobileInstallation, where an enterprise-signed, crafted app could gain control of the local app container for apps already on the device. This could enable an attacker to influence installed a...
CVE-2014-4493
The app-installation functionality in MobileInstallation in Apple iOS before 8.1.3 allows attackers to obtain control of the local app container by leveraging access to an enterprise distribution certificate for signing a crafted app...