Vulnerabilities > Apple > Iphone OS > 5.0

DATE CVE VULNERABILITY TITLE RISK
2012-03-05 CVE-2011-3032 USE After Free vulnerability in Google Chrome
Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of SVG values.
6.8
2012-02-16 CVE-2011-3027 Incorrect Type Conversion OR Cast vulnerability in Google Chrome
Google Chrome before 17.0.963.56 does not properly perform a cast of an unspecified variable during handling of columns, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document.
network
google apple CWE-704
4.3
2012-02-16 CVE-2011-3026 Integer Overflow OR Wraparound vulnerability in Google Chrome
Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an integer truncation.
6.8
2012-02-16 CVE-2011-3021 USE After Free vulnerability in Google Chrome
Use-after-free vulnerability in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to subframe loading.
network
low complexity
google apple CWE-416
7.5
2012-02-16 CVE-2011-3016 USE After Free vulnerability in Google Chrome
Use-after-free vulnerability in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving counter nodes, related to a "read-after-free" issue.
network
google apple CWE-416
6.8
2011-11-11 CVE-2011-3442 Resource Management Errors vulnerability in Apple Iphone OS
The kernel in Apple iOS before 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which allows local users to execute arbitrary unsigned code via a crafted app.
local
low complexity
apple CWE-399
7.2
2011-11-11 CVE-2011-3441 Information Exposure vulnerability in Apple Iphone OS
libinfo in Apple iOS before 5.0.1 does not properly formulate domain-name queries, which allows remote attackers to obtain sensitive information via a crafted DNS hostname.
network
apple CWE-200
4.3
2011-11-11 CVE-2011-3440 Permissions, Privileges, and Access Controls vulnerability in Apple Ipad2 and Iphone OS
The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data by opening a Smart Cover during power-off confirmation.
local
high complexity
apple CWE-264
1.2
2011-11-11 CVE-2011-3439 Out-Of-Bounds Write vulnerability in multiple products
FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font in a document.
network
apple suse CWE-787
critical
9.3