|
260191
|
- |
|
apple
|
iphone_os
|
The kernel in Apple iOS before 7 allows remote attackers to cause a denial of service (assertion failure and device restart) via an invalid packet fragment.
|
CWE-20
Improper Input Validation
|
CVE-2013-5140
|
2013-10-23 04:59 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260192
|
- |
|
apple
|
iphone_os
|
Mobile Safari in Apple iOS before 7 does not prevent HTML interpretation of a document served with a text/plain content type, which allows remote attackers to conduct cross-site scripting (XSS) attac…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5151
|
2013-10-23 04:53 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260193
|
- |
|
apple
|
iphone_os
|
The Sandbox subsystem in Apple iOS before 7 allows attackers to cause a denial of service (infinite loop) via an application that writes crafted values to /dev/random.
|
CWE-20
Improper Input Validation
|
CVE-2013-5155
|
2013-10-23 04:52 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260194
|
- |
|
apple
|
iphone_os
|
The Telephony subsystem in Apple iOS before 7 does not require API conformity for access to telephony-daemon interfaces, which allows attackers to bypass intended restrictions on phone calls via a cr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5156
|
2013-10-23 04:52 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260195
|
- |
|
apple
|
iphone_os
|
The Twitter subsystem in Apple iOS before 7 does not require API conformity for access to Twitter daemon interfaces, which allows attackers to post Tweets via a crafted app that sends direct requests…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5157
|
2013-10-23 04:26 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260196
|
- |
|
apple
|
iphone_os
|
The Social subsystem in Apple iOS before 7 does not properly restrict access to the cache of Twitter icons, which allows physically proximate attackers to obtain sensitive information about recent Tw…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5158
|
2013-10-23 04:22 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260197
|
- |
|
apple
|
iphone_os
|
WebKit in Apple iOS before 7 allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive information about use of the window.webkitRequestAnimationFrame API via an IFRAM…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5159
|
2013-10-23 04:20 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260198
|
- |
|
apple
|
iphone_os
|
Springboard in Apple iOS before 7 does not properly manage the lock state in Lost Mode, which allows physically proximate attackers to read notifications via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5153
|
2013-10-23 04:07 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260199
|
- |
|
cisco
|
virtualization_experience_client_6000
virtualization_experience_client_6000_series_firmware
|
The diagnostic module in the firmware on Cisco Virtualization Experience Client 6000 devices allows local users to bypass intended access restrictions and execute arbitrary commands via unspecified v…
|
CWE-20
Improper Input Validation
|
CVE-2013-5493
|
2013-10-23 03:54 |
2013-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260200
|
- |
|
cisco
|
telepresence_multipoint_switch
|
The Media Snapshot implementation on Cisco TelePresence Multipoint Switch (CTMS) devices allows remote authenticated users to cause a denial of service (device reload) by sending many Media Snapshot …
|
CWE-399
Resource Management Errors
|
CVE-2013-5516
|
2013-10-23 03:51 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
