Vulnerabilities > Apple > Iphone OS > 8.1.1

DATE CVE VULNERABILITY TITLE RISK
2015-08-17 CVE-2015-5775 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font file, a different vulnerability than CVE-2015-3804 and CVE-2015-5756.
network
low complexity
apple CWE-119
7.5
2015-08-17 CVE-2015-5774 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
Buffer overflow in IOHIDFamily in Apple iOS before 8.4.1 and OS X before 10.10.5 allows local users to gain privileges via unspecified vectors.
local
low complexity
apple CWE-119
7.2
2015-08-17 CVE-2015-5773 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
QL Office in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted office document.
network
apple CWE-119
6.8
2015-08-17 CVE-2015-5770 Permissions, Privileges, and Access Controls vulnerability in Apple Iphone OS
MobileInstallation in Apple iOS before 8.4.1 does not ensure the uniqueness of universal provisioning profile bundle IDs, which allows attackers to replace arbitrary extensions via a crafted enterprise app.
network
apple CWE-264
5.8
2015-08-17 CVE-2015-5769 Multiple Security vulnerability in Apple iOS APPLE-SA-2015-08-13-3
The MSVDX driver in Apple iOS before 8.4.1 allows remote attackers to cause a denial of service (device crash) via a crafted video.
network
apple
7.1
2015-08-17 CVE-2015-5766 Path Traversal vulnerability in Apple Iphone OS
Directory traversal vulnerability in Air Traffic in Apple iOS before 8.4.1 allows attackers to access arbitrary filesystem locations via vectors related to asset handling.
network
low complexity
apple CWE-22
5.0
2015-08-17 CVE-2015-5761 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS, Itunes and mac OS X
CoreText in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font file, a different vulnerability than CVE-2015-5755.
network
apple CWE-119
6.8
2015-08-17 CVE-2015-5759 7PK - Security Features vulnerability in Apple Iphone OS
WebKit in Apple iOS before 8.4.1 allows remote attackers to spoof clicks via a crafted web site that leverages tap events.
network
low complexity
apple CWE-254
5.0
2015-08-17 CVE-2015-5758 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted TIFF image.
network
apple CWE-119
6.8
2015-08-17 CVE-2015-5757 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
libpthread in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via an app that uses a crafted syscall to interfere with locking.
network
apple CWE-119
critical
9.3