|
3551
|
-
4.3
|
MEDIUM
|
WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 6.0.472.53, and webkitgtk before 1.2.6, does not properly restrict read access to images derived from CANVAS …
|
CWE-200
Information Exposure
|
CVE-2010-3259
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
4.2
|
2024-11-21 10:18
2010-09-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3552
|
-
9.3
|
HIGH
|
Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 6.0.472.53, and webkitgtk before 1.2.6, allows remote attackers to execute ar…
|
CWE-416
Use After Free
|
CVE-2010-3257
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
4.2
|
2024-11-21 10:18
2010-09-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3553
|
-
10.0
|
HIGH
|
Multiple use-after-free vulnerabilities in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, allow remote attackers to…
|
CWE-416
Use After Free
|
CVE-2010-3116
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
4.2
|
2024-11-21 10:18
2010-08-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3554
|
-
6.8
|
MEDIUM
|
Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or poss…
|
CWE-120
Classic Buffer Overflow
|
CVE-2010-2808
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
4.2
|
2024-11-21 10:17
2010-08-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3555
|
-
6.8
|
MEDIUM
|
FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a…
|
CWE-681
Incorrect Conversion between Numeric Types
|
CVE-2010-2807
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
4.2
|
2024-11-21 10:17
2010-08-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3556
|
-
6.8
|
MEDIUM
|
Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary …
|
CWE-129
Improper Validation of Array Index
|
CVE-2010-2806
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
4.2
|
2024-11-21 10:17
2010-08-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3557
|
-
6.8
|
MEDIUM
|
The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly validate certain position values, which allows remote attackers to cause a denial of service (applicati…
|
CWE-20
Improper Input Validation
|
CVE-2010-2805
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
4.2
|
2024-11-21 10:17
2010-08-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3558
|
-
9.3
|
HIGH
|
Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType before 2.4.2, as used in Apple iOS before 4.…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1797
|
cpe:2.3:o:apple:iphone_os:4.0:- cpe:2.3:o:apple:iphone_os:4.0:- cpe:2.3:o:apple:iphone_os:4.0:* cpe:2.3:o:appl…
|
|
|
|
|
2024-11-21 10:15
2010-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3559
|
-
6.9
|
MEDIUM
|
Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2973
|
cpe:2.3:o:apple:iphone_os:4.0:- cpe:2.3:o:apple:iphone_os:4.0:- cpe:2.3:o:apple:iphone_os:4.0:* cpe:2.3:o:appl…
|
|
|
|
|
2024-11-21 10:17
2010-08-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3560
|
6.5
4.3
|
MEDIUM
Network
|
Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing m…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2010-2249
|
cpe:2.3:o:apple:iphone_os:*:*
|
2.0
|
4.1
|
|
|
2024-11-21 10:16
2010-07-1
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|