Vulnerabilities > Apple

DATE CVE VULNERABILITY TITLE RISK
2015-08-17 CVE-2015-5778 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-5777.
network
apple CWE-119
6.8
2015-08-17 CVE-2015-5777 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-5778.
network
apple CWE-119
6.8
2015-08-17 CVE-2015-5776 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
Libinfo in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by leveraging use of an AF_INET6 socket.
network
low complexity
apple CWE-119
7.5
2015-08-17 CVE-2015-5775 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font file, a different vulnerability than CVE-2015-3804 and CVE-2015-5756.
network
low complexity
apple CWE-119
7.5
2015-08-17 CVE-2015-5774 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
Buffer overflow in IOHIDFamily in Apple iOS before 8.4.1 and OS X before 10.10.5 allows local users to gain privileges via unspecified vectors.
local
low complexity
apple CWE-119
7.2
2015-08-17 CVE-2015-5773 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS and mac OS X
QL Office in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted office document.
network
apple CWE-119
6.8
2015-08-17 CVE-2015-5772 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
Heap-based buffer overflow in SceneKit in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code via a crafted Collada file.
network
apple CWE-119
6.8
2015-08-17 CVE-2015-5771 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
Quartz Composer Framework in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted QuickTime file.
network
apple CWE-119
6.8
2015-08-17 CVE-2015-5770 Permissions, Privileges, and Access Controls vulnerability in Apple Iphone OS
MobileInstallation in Apple iOS before 8.4.1 does not ensure the uniqueness of universal provisioning profile bundle IDs, which allows attackers to replace arbitrary extensions via a crafted enterprise app.
network
apple CWE-264
5.8
2015-08-17 CVE-2015-5769 Multiple Security vulnerability in Apple iOS APPLE-SA-2015-08-13-3
The MSVDX driver in Apple iOS before 8.4.1 allows remote attackers to cause a denial of service (device crash) via a crafted video.
network
apple
7.1