Vulnerabilities > Apple > Iphone OS > 4.2.10
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-09-18 | CVE-2015-5788 | Information Exposure vulnerability in Apple Iphone OS and Safari The WebKit Canvas implementation in Apple iOS before 9 allows remote attackers to bypass the Same Origin Policy and obtain sensitive image information via vectors involving a CANVAS element. | 4.3 |
2015-09-18 | CVE-2015-5767 | Improper Input Validation vulnerability in Apple Iphone OS and Safari The user interface in Safari in Apple iOS before 9 allows remote attackers to spoof URLs via unspecified vectors, a different vulnerability than CVE-2015-5764 and CVE-2015-5765. | 4.3 |
2015-09-18 | CVE-2015-5765 | Improper Input Validation vulnerability in Apple Iphone OS and Safari The user interface in Safari in Apple iOS before 9 allows remote attackers to spoof URLs via unspecified vectors, a different vulnerability than CVE-2015-5764 and CVE-2015-5767. | 4.3 |
2015-09-18 | CVE-2015-5764 | Improper Input Validation vulnerability in Apple Iphone OS and Safari The user interface in Safari in Apple iOS before 9 allows remote attackers to spoof URLs via unspecified vectors, a different vulnerability than CVE-2015-5765 and CVE-2015-5767. | 4.3 |
2015-09-18 | CVE-2015-3801 | Permissions, Privileges, and Access Controls vulnerability in Apple Iphone OS and Safari The document.cookie API implementation in the CFNetwork Cookies subsystem in WebKit in Apple iOS before 9 allows remote attackers to bypass an intended single-cookie restriction via unspecified vectors. | 5.0 |
2015-09-18 | CVE-2014-8611 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The __sflush function in fflush.c in stdio in libc in FreeBSD 10.1 and the kernel in Apple iOS before 9 mishandles failures of the write system call, which allows context-dependent attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via a crafted application. | 6.9 |
2015-08-17 | CVE-2015-5782 | Information Exposure vulnerability in Apple Iphone OS and mac OS X ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly initialize an unspecified data structure, which allows remote attackers to obtain sensitive information from process memory via a crafted TIFF image. | 4.3 |
2015-08-17 | CVE-2015-5781 | Information Exposure vulnerability in Apple Iphone OS and mac OS X ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly initialize an unspecified data structure, which allows remote attackers to obtain sensitive information from process memory via a crafted PNG image. | 4.3 |
2015-08-17 | CVE-2015-5778 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-5777. | 6.8 |
2015-08-17 | CVE-2015-5777 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-5778. | 6.8 |