iOS

CVEs (1,707)

CVE	Vendor / Product	CVSS	EPSS	Published	Description
CVE-2011-3442	Apple Inc. Iphone Os	—	0.00	Nov 11, 2011	The kernel in Apple iOS before 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which allows local users to execute arbitrary unsigned code via a crafted app.
CVE-2011-3440	Apple Inc. Iphone Os	—	0.00	Nov 11, 2011	The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data by opening a Smart Cover during power-off confirmation.
CVE-2011-3434	Apple Inc. Iphone Os	—	0.00	Oct 14, 2011	The WiFi component in Apple iOS before 5 stores WiFi credentials in an unspecified file, which makes it easier for remote attackers to obtain sensitive information via a crafted application.
CVE-2011-3432	Apple Inc. Iphone Os	—	0.01	Oct 14, 2011	The UIKit Alerts component in Apple iOS before 5 allows remote attackers to cause a denial of service (device hang) via a long tel: URL that triggers a large size for the acceptance dialog.
CVE-2011-3431	Apple Inc. Iphone Os	—	0.00	Oct 14, 2011	The Home screen component in Apple iOS before 5 does not properly support a certain application-switching gesture, which might allow physically proximate attackers to obtain sensitive state information by watching the device's screen.
CVE-2011-3429	Apple Inc. Iphone Os	—	0.00	Oct 14, 2011	The Settings component in Apple iOS before 5 stores a cleartext parental-restrictions passcode in an unspecified file, which might allow physically proximate attackers to obtain sensitive information by reading this file.
CVE-2011-3261	Apple Inc. Iphone Os	—	0.02	Oct 14, 2011	Double free vulnerability in OfficeImport in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Excel spreadsheet.
CVE-2011-3260	Apple Inc. Iphone Os	—	0.02	Oct 14, 2011	Buffer overflow in OfficeImport in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Word document.
CVE-2011-3259	Apple Inc. Iphone Os	—	0.02	Oct 14, 2011	The kernel in Apple iOS before 5 and Apple TV before 4.4 does not properly recover memory allocated for incomplete TCP connections, which allows remote attackers to cause a denial of service (resource consumption) by making many connection attempts.
CVE-2011-3257	Apple Inc. Iphone Os	—	0.00	Oct 14, 2011	The Data Access component in Apple iOS before 5 does not properly handle the existence of multiple user accounts on the same mail server, which allows local users to bypass intended access restrictions in opportunistic circumstances by leveraging a different account's cookie.
CVE-2011-3255	Apple Inc. Iphone Os	—	0.00	Oct 14, 2011	CFNetwork in Apple iOS before 5 stores AppleID credentials in an unspecified file, which makes it easier for remote attackers to obtain sensitive information via a crafted application.
CVE-2011-3254	Apple Inc. Iphone Os	—	0.00	Oct 14, 2011	Cross-site scripting (XSS) vulnerability in Calendar in Apple iOS before 5 allows remote attackers to inject arbitrary web script or HTML via an invitation note.
CVE-2011-3253	Apple Inc. Iphone Os	—	0.00	Oct 14, 2011	CalDAV in Apple iOS before 5 does not validate X.509 certificates for SSL sessions, which allows man-in-the-middle attackers to spoof calendar servers and obtain sensitive information via an arbitrary certificate.
CVE-2011-3246	Apple Inc. Mac Os X	—	0.01	Oct 14, 2011	CFNetwork in Apple iOS before 5.0.1 and Mac OS X 10.7 before 10.7.2 does not properly parse URLs, which allows remote attackers to trigger visits to unintended web sites, and transmission of cookies to unintended web sites, via a crafted (1) http or (2) https URL.
CVE-2011-3245	Apple Inc. Iphone Os	—	0.00	Oct 14, 2011	The Keyboards component in Apple iOS before 5 displays the final character of an entered password during a subsequent use of a keyboard, which allows physically proximate attackers to obtain sensitive information by reading this character.
CVE-2011-3243	Apple Inc. Safari	—	0.00	Oct 14, 2011	Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5 and Safari before 5.1.1, allows remote attackers to inject arbitrary web script or HTML via vectors involving inactive DOM windows.
CVE-2011-0227	Apple Inc. Iphone Os	—	0.00	Jul 19, 2011	The queueing primitives in IOMobileFrameBuffer in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 do not properly perform type conversion, which allows local users to gain privileges via a crafted application.
CVE-2011-0163	Apple Inc. Safari	—	0.01	Mar 11, 2011	WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle unspecified "cached resources," which allows remote attackers to cause a denial of service (resource unavailability) via a crafted web site that conducts a cache-poisoning attack.
CVE-2011-0162	Apple Inc. Iphone Os	—	0.02	Mar 11, 2011	Wi-Fi in Apple iOS before 4.3 and Apple TV before 4.2 does not properly perform bounds checking for Wi-Fi frames, which allows remote attackers to cause a denial of service (device reset) via unspecified traffic on the local wireless network.
CVE-2011-0161	Apple Inc. Safari	—	0.00	Mar 11, 2011	WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle the Attr.style accessor, which allows remote attackers to bypass the Same Origin Policy and inject Cascading Style Sheets (CSS) token sequences via a crafted web site.

CVE-2011-3442Nov 11, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
The kernel in Apple iOS before 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which allows local users to execute arbitrary unsigned code via a crafted app.
CVE-2011-3440Nov 11, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data by opening a Smart Cover during power-off confirmation.
CVE-2011-3434Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
The WiFi component in Apple iOS before 5 stores WiFi credentials in an unspecified file, which makes it easier for remote attackers to obtain sensitive information via a crafted application.
CVE-2011-3432Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.01
The UIKit Alerts component in Apple iOS before 5 allows remote attackers to cause a denial of service (device hang) via a long tel: URL that triggers a large size for the acceptance dialog.
CVE-2011-3431Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
The Home screen component in Apple iOS before 5 does not properly support a certain application-switching gesture, which might allow physically proximate attackers to obtain sensitive state information by watching the device's screen.
CVE-2011-3429Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
The Settings component in Apple iOS before 5 stores a cleartext parental-restrictions passcode in an unspecified file, which might allow physically proximate attackers to obtain sensitive information by reading this file.
CVE-2011-3261Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.02
Double free vulnerability in OfficeImport in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Excel spreadsheet.
CVE-2011-3260Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.02
Buffer overflow in OfficeImport in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Word document.
CVE-2011-3259Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.02
The kernel in Apple iOS before 5 and Apple TV before 4.4 does not properly recover memory allocated for incomplete TCP connections, which allows remote attackers to cause a denial of service (resource consumption) by making many connection attempts.
CVE-2011-3257Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
The Data Access component in Apple iOS before 5 does not properly handle the existence of multiple user accounts on the same mail server, which allows local users to bypass intended access restrictions in opportunistic circumstances by leveraging a different account's cookie.
CVE-2011-3255Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
CFNetwork in Apple iOS before 5 stores AppleID credentials in an unspecified file, which makes it easier for remote attackers to obtain sensitive information via a crafted application.
CVE-2011-3254Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in Calendar in Apple iOS before 5 allows remote attackers to inject arbitrary web script or HTML via an invitation note.
CVE-2011-3253Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
CalDAV in Apple iOS before 5 does not validate X.509 certificates for SSL sessions, which allows man-in-the-middle attackers to spoof calendar servers and obtain sensitive information via an arbitrary certificate.
CVE-2011-3246Oct 14, 2011
Apple Inc.
Mac Os X
risk 0.00cvss —epss 0.01
CFNetwork in Apple iOS before 5.0.1 and Mac OS X 10.7 before 10.7.2 does not properly parse URLs, which allows remote attackers to trigger visits to unintended web sites, and transmission of cookies to unintended web sites, via a crafted (1) http or (2) https URL.
CVE-2011-3245Oct 14, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
The Keyboards component in Apple iOS before 5 displays the final character of an entered password during a subsequent use of a keyboard, which allows physically proximate attackers to obtain sensitive information by reading this character.
CVE-2011-3243Oct 14, 2011
Apple Inc.
Safari
risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5 and Safari before 5.1.1, allows remote attackers to inject arbitrary web script or HTML via vectors involving inactive DOM windows.
CVE-2011-0227Jul 19, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.00
The queueing primitives in IOMobileFrameBuffer in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 do not properly perform type conversion, which allows local users to gain privileges via a crafted application.
CVE-2011-0163Mar 11, 2011
Apple Inc.
Safari
risk 0.00cvss —epss 0.01
WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle unspecified "cached resources," which allows remote attackers to cause a denial of service (resource unavailability) via a crafted web site that conducts a cache-poisoning attack.
CVE-2011-0162Mar 11, 2011
Apple Inc.
Iphone Os
risk 0.00cvss —epss 0.02
Wi-Fi in Apple iOS before 4.3 and Apple TV before 4.2 does not properly perform bounds checking for Wi-Fi frames, which allows remote attackers to cause a denial of service (device reset) via unspecified traffic on the local wireless network.
CVE-2011-0161Mar 11, 2011
Apple Inc.
Safari
risk 0.00cvss —epss 0.00
WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle the Attr.style accessor, which allows remote attackers to bypass the Same Origin Policy and inject Cascading Style Sheets (CSS) token sequences via a crafted web site.

Page 84 of 86