| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-2013-0977 |
|
|
Bypass |
2013-03-20 |
2013-03-21 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
dyld in Apple iOS before 6.1.3 and Apple TV before 5.2.1 does not properly manage the state of file loading for Mach-O executable files, which allows local users to bypass intended code-signing requirements via a file that contains overlapping segments. |
|
2 |
CVE-2012-3746 |
310 |
|
|
2012-09-20 |
2013-03-25 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
UIWebView in UIKit in Apple iOS before 6 does not properly use the Data protection feature, which allows context-dependent attackers to obtain cleartext file content by leveraging direct access to a device's filesystem. |
|
3 |
CVE-2012-3736 |
264 |
|
Bypass |
2012-09-20 |
2012-09-21 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
The Passcode Lock implementation in Apple iOS before 6 allows physically proximate attackers to bypass an intended passcode requirement via vectors related to ending a FaceTime call. |
|
4 |
CVE-2012-3733 |
200 |
|
+Info |
2012-09-20 |
2013-03-25 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
Messages in Apple iOS before 6, when multiple iMessage e-mail addresses are configured, does not ensure that a reply's sender address matches the recipient address of the original message, which allows remote attackers to obtain potentially sensitive information about alternate e-mail addresses in opportunistic circumstances by reading a reply. |
|
5 |
CVE-2012-3730 |
|
|
|
2012-09-20 |
2013-03-25 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Mail in Apple iOS before 6 does not properly handle reuse of Content-ID header values, which allows remote attackers to spoof attachments via a header value that was also used in a previous e-mail message, as demonstrated by a message from a different sender. |
|
6 |
CVE-2012-2889 |
79 |
|
XSS |
2012-09-26 |
2013-03-21 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to inject arbitrary web script or HTML via vectors involving frames, aka "Universal XSS (UXSS)." |
|
7 |
CVE-2012-0674 |
20 |
|
|
2012-05-08 |
2012-05-08 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Safari in Apple iOS before 5.1.1 allows remote attackers to spoof the location bar's URL via a crafted web site. |
|
8 |
CVE-2012-0590 |
79 |
|
XSS |
2012-03-08 |
2012-10-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5.1, allows user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a drag-and-drop operation. |
|
9 |
CVE-2012-0589 |
79 |
|
XSS |
2012-03-08 |
2012-10-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0586, CVE-2012-0587, and CVE-2012-0588. |
|
10 |
CVE-2012-0588 |
79 |
|
XSS |
2012-03-08 |
2012-10-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0586, CVE-2012-0587, and CVE-2012-0589. |
|
11 |
CVE-2012-0587 |
79 |
|
XSS |
2012-03-08 |
2012-10-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0586, CVE-2012-0588, and CVE-2012-0589. |
|
12 |
CVE-2012-0586 |
79 |
|
XSS |
2012-03-08 |
2012-10-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0587, CVE-2012-0588, and CVE-2012-0589. |
|
13 |
CVE-2011-3441 |
200 |
|
+Info |
2011-11-11 |
2012-02-03 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
libinfo in Apple iOS before 5.0.1 does not properly formulate domain-name queries, which allows remote attackers to obtain sensitive information via a crafted DNS hostname. |
|
14 |
CVE-2011-3434 |
255 |
|
+Info |
2011-10-14 |
2011-10-20 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The WiFi component in Apple iOS before 5 stores WiFi credentials in an unspecified file, which makes it easier for remote attackers to obtain sensitive information via a crafted application. |
|
15 |
CVE-2011-3426 |
79 |
|
XSS |
2011-10-14 |
2012-07-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in Safari in Apple iOS before 5 allows remote web servers to inject arbitrary web script or HTML via a file accompanied by a "Content-Disposition: attachment" HTTP header. |
|
16 |
CVE-2011-3256 |
94 |
|
DoS Exec Code Mem. Corr. |
2011-10-14 |
2012-12-18 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5, Mandriva Enterprise Server 5, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font, a different vulnerability than CVE-2011-0226. |
|
17 |
CVE-2011-3255 |
255 |
|
+Info |
2011-10-14 |
2012-01-11 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
CFNetwork in Apple iOS before 5 stores AppleID credentials in an unspecified file, which makes it easier for remote attackers to obtain sensitive information via a crafted application. |
|
18 |
CVE-2011-3254 |
79 |
|
XSS |
2011-10-14 |
2011-10-14 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in Calendar in Apple iOS before 5 allows remote attackers to inject arbitrary web script or HTML via an invitation note. |
|
19 |
CVE-2011-3243 |
79 |
|
XSS |
2011-10-14 |
2011-10-20 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5 and Safari before 5.1.1, allows remote attackers to inject arbitrary web script or HTML via vectors involving inactive DOM windows. |
|
20 |
CVE-2011-3058 |
79 |
|
XSS |
2012-03-30 |
2013-03-15 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Google Chrome before 18.0.1025.142 does not properly handle the EUC-JP encoding system, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via unspecified vectors. |
|
21 |
CVE-2011-0195 |
200 |
|
+Info |
2011-04-15 |
2011-07-22 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The generate-id XPath function in libxslt in Apple iOS 4.3.x before 4.3.2 allows remote attackers to obtain potentially sensitive information about heap memory addresses via a crafted web site. NOTE: this may overlap CVE-2011-1202. |
|
22 |
CVE-2011-0163 |
20 |
|
DoS |
2011-03-11 |
2011-03-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle unspecified "cached resources," which allows remote attackers to cause a denial of service (resource unavailability) via a crafted web site that conducts a cache-poisoning attack. |
|
23 |
CVE-2011-0161 |
264 |
|
Bypass |
2011-03-11 |
2011-03-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle the Attr.style accessor, which allows remote attackers to bypass the Same Origin Policy and inject Cascading Style Sheets (CSS) token sequences via a crafted web site. |
|
24 |
CVE-2011-0158 |
20 |
|
DoS |
2011-03-11 |
2011-03-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
MobileSafari in Apple iOS before 4.3 does not properly implement application launching through URL handlers, which allows remote attackers to cause a denial of service (persistent application crash) via crafted JavaScript code. |
|
25 |
CVE-2010-3831 |
200 |
|
+Info |
2010-11-26 |
2010-12-10 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
Photos in Apple iOS before 4.2 enables support for HTTP Basic Authentication over an unencrypted connection, which allows man-in-the-middle attackers to read MobileMe account passwords by spoofing a MobileMe Gallery server during a "Send to MobileMe" action. |
|
26 |
CVE-2010-3828 |
|
|
|
2010-11-26 |
2010-12-10 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
iAd Content Display in Apple iOS before 4.2 allows man-in-the-middle attackers to make calls via a crafted URL in an ad. |
|
27 |
CVE-2010-3827 |
20 |
|
|
2010-11-26 |
2010-12-10 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Apple iOS before 4.2 does not properly validate signatures before displaying a configuration profile in the configuration installation utility, which allows remote attackers to spoof profiles via unspecified vectors. |
|
28 |
CVE-2010-1755 |
264 |
|
|
2010-06-22 |
2010-06-26 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
Safari in Apple iOS before 4 on the iPhone and iPod touch does not properly implement the Accept Cookies preference, which makes it easier for remote web servers to track users via a cookie. |
|
29 |
CVE-2010-1407 |
200 |
|
+Info |
2010-06-22 |
2011-03-17 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
WebKit in Apple iOS before 4 on the iPhone and iPod touch does not properly implement the history.replaceState method in certain situations involving IFRAME elements, which allows remote attackers to obtain sensitive information via a crafted HTML document. |
|
30 |
CVE-2010-1181 |
20 |
|
DoS Exec Code |
2010-03-29 |
2012-03-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a MARQUEE element. |
|
31 |
CVE-2010-0038 |
399 |
|
Mem. Corr. Bypass |
2010-02-03 |
2010-03-26 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption. |
|
32 |
CVE-2009-3271 |
20 |
1
|
DoS |
2009-09-21 |
2009-09-22 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
Apple Safari on iPhone OS 3.0.1 allows remote attackers to cause a denial of service (application crash) via a long tel: URL in the SRC attribute of an IFRAME element. |
|
33 |
CVE-2009-2794 |
362 |
|
Bypass |
2009-09-10 |
2012-10-22 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
The Exchange Support component in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod touch, does not properly implement the "Maximum inactivity time lock" functionality, which allows local users to bypass intended Microsoft Exchange restrictions by choosing a large Require Passcode time value. |
|
34 |
CVE-2009-1724 |
79 |
|
XSS |
2009-07-09 |
2012-03-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0.2, as used on iPhone OS before 3.1, iPhone OS before 3.1.1 for iPod touch, and other platforms, allows remote attackers to inject arbitrary web script or HTML via vectors related to parent and top objects. |
|
35 |
CVE-2009-1702 |
79 |
|
XSS |
2009-06-10 |
2012-03-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to improper handling of Location and History objects. |
|
36 |
CVE-2009-1700 |
200 |
|
+Info |
2009-06-10 |
2012-03-30 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The XSLT implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle redirects, which allows remote attackers to read XML content from arbitrary web pages via a crafted document. |
|
37 |
CVE-2009-0960 |
|
|
|
2009-06-19 |
2012-03-30 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The Mail component in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 does not provide an option to disable remote image loading in HTML email, which allows remote attackers to determine the device address and when an e-mail is read via an HTML email containing an image URL. |
|
38 |
CVE-2009-0958 |
200 |
|
+Info |
2009-06-19 |
2012-03-30 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 stores an exception for a hostname when the user accepts an untrusted Exchange server certificate, which causes it to be accepted without prompting in future usage and allows remote Exchange servers to obtain sensitive information such as credentials. |
