|
3531
|
-
7.5
|
HIGH
|
Google Chrome before 9.0.597.94 does not properly handle anonymous blocks, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors tha…
|
CWE-20
Improper Input Validation
|
CVE-2011-0983
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
5.0
|
2024-11-21 10:25
2011-02-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3532
|
-
7.5
|
HIGH
|
Google Chrome before 9.0.597.94 does not properly perform event handling for animations, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unkno…
|
CWE-20
Improper Input Validation
|
CVE-2011-0981
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
5.0
|
2024-11-21 10:25
2011-02-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3533
|
-
6.2
|
MEDIUM
|
Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate attackers to bypass the passcode lock by making a call from the Emergency Call screen, then quickly pre…
|
CWE-362
Race Condition
|
CVE-2010-4012
|
cpe:2.3:o:apple:iphone_os:4.1:* cpe:2.3:o:apple:iphone_os:4.0:*
|
|
|
|
|
2024-11-21 10:20
2010-12-9
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3534
|
-
7.5
|
HIGH
|
Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have un…
|
CWE-415
Double Free
|
CVE-2010-4494
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
4.3.0
|
2024-11-21 10:21
2010-12-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3535
|
-
6.8
|
MEDIUM
|
Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple iOS before 4.2 on the iPhone and iPad allows remote attackers to execute arbitrary code on the baseband …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3832
|
cpe:2.3:o:apple:iphone_os:4.0:* cpe:2.3:o:apple:iphone_os:4.0.2:* cpe:2.3:o:apple:iphone_os:4.0.1:* cpe:2.3:o:…
|
|
4.1
|
|
|
2024-11-21 10:19
2010-11-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3536
|
-
4.3
|
MEDIUM
|
Photos in Apple iOS before 4.2 enables support for HTTP Basic Authentication over an unencrypted connection, which allows man-in-the-middle attackers to read MobileMe account passwords by spoofing a …
|
CWE-200
Information Exposure
|
CVE-2010-3831
|
cpe:2.3:o:apple:iphone_os:4.0:* cpe:2.3:o:apple:iphone_os:4.0.2:* cpe:2.3:o:apple:iphone_os:4.0.1:* cpe:2.3:o:…
|
|
4.1
|
|
|
2024-11-21 10:19
2010-11-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3537
|
-
7.2
|
HIGH
|
Networking in Apple iOS before 4.2 accesses an invalid pointer during the processing of packet filter rules, which allows local users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3830
|
cpe:2.3:o:apple:iphone_os:4.0:* cpe:2.3:o:apple:iphone_os:4.0.2:* cpe:2.3:o:apple:iphone_os:4.0.1:* cpe:2.3:o:…
|
|
4.1
|
|
|
2024-11-21 10:19
2010-11-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3538
|
-
5.8
|
MEDIUM
|
WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail m…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3829
|
cpe:2.3:o:apple:iphone_os:4.0:* cpe:2.3:o:apple:iphone_os:4.0.2:* cpe:2.3:o:apple:iphone_os:4.0.1:* cpe:2.3:o:…
|
|
4.1
|
|
|
2024-11-21 10:19
2010-11-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3539
|
-
4.3
|
MEDIUM
|
iAd Content Display in Apple iOS before 4.2 allows man-in-the-middle attackers to make calls via a crafted URL in an ad.
|
NVD-CWE-Other
|
CVE-2010-3828
|
cpe:2.3:o:apple:iphone_os:4.0:* cpe:2.3:o:apple:iphone_os:4.0.2:* cpe:2.3:o:apple:iphone_os:4.0.1:* cpe:2.3:o:…
|
|
4.1
|
|
|
2024-11-21 10:19
2010-11-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3540
|
-
4.3
|
MEDIUM
|
Apple iOS before 4.2 does not properly validate signatures before displaying a configuration profile in the configuration installation utility, which allows remote attackers to spoof profiles via uns…
|
CWE-20
Improper Input Validation
|
CVE-2010-3827
|
cpe:2.3:o:apple:iphone_os:4.0:* cpe:2.3:o:apple:iphone_os:4.0.2:* cpe:2.3:o:apple:iphone_os:4.0.1:* cpe:2.3:o:…
|
|
4.1
|
|
|
2024-11-21 10:19
2010-11-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|