CVE-2007-3754
- EPSS 0.72%
- Veröffentlicht 27.09.2007 21:17:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Mail in Apple iPhone 1.1.1, when using SSL, does not warn the user when the mail server changes or is not trusted, which might allow remote attackers to steal credentials and read email via a man-in-the-middle (MITM) attack.
CVE-2007-3755
- EPSS 1.06%
- Veröffentlicht 27.09.2007 21:17:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Mail in Apple iPhone 1.1.1 allows remote user-assisted attackers to force the iPhone user to make calls to arbitrary telephone numbers via a "tel:" link, which does not prompt the user before dialing the number.
CVE-2007-3944
- EPSS 17.87%
- Veröffentlicht 23.07.2007 16:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Multiple heap-based buffer overflows in the Perl Compatible Regular Expressions (PCRE) library in the JavaScript engine in WebKit in Apple Safari 3 Beta before Update 3.0.3, and iPhone before 1.0.1, allow remote attackers to execute arbitrary code vi...
CVE-2007-2400
- EPSS 0.46%
- Veröffentlicht 25.06.2007 19:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Race condition in Apple Safari 3 Beta before 3.0.2 on Mac OS X, Windows XP, Windows Vista, and iPhone before 1.0.1, allows remote attackers to bypass the JavaScript security model and modify pages outside of the security domain and conduct cross-site...