Apple

iPhone OS

4053 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.61%
  • Veröffentlicht 22.06.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:14

Stack-based buffer overflow in CFNetwork in Apple iOS before 4 on the iPhone and iPod touch allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to URL handling.

  • EPSS 2.89%
  • Veröffentlicht 22.06.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:15

ImageIO in Apple iOS before 4 on the iPhone and iPod touch allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted JPEG image.

  • EPSS 0.36%
  • Veröffentlicht 22.06.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:15

Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch does not properly handle alert-based unlocks in conjunction with subsequent Remote Lock operations through MobileMe, which allows physically proximate attackers to bypass intended passc...

  • EPSS 1.54%
  • Veröffentlicht 22.06.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:15

Safari in Apple iOS before 4 on the iPhone and iPod touch does not properly implement the Accept Cookies preference, which makes it easier for remote web servers to track users via a cookie.

  • EPSS 1.84%
  • Veröffentlicht 22.06.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:15

The Settings application in Apple iOS before 4 on the iPhone and iPod touch does not properly report the wireless network that is in use, which might make it easier for remote attackers to trick users into communicating over an unintended network.

  • EPSS 3.64%
  • Veröffentlicht 22.06.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:15

WebKit in Apple iOS before 4 on the iPhone and iPod touch does not enforce the expected boundary restrictions on content display by an IFRAME element, which allows remote attackers to spoof the user interface via a crafted HTML document.

  • EPSS 0.26%
  • Veröffentlicht 22.06.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:18

Race condition in Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch allows physically proximate attackers to bypass intended passcode requirements, and pair a locked device with a computer and access arbitrary data, via vectors involvi...

  • EPSS 6.1%
  • Veröffentlicht 18.06.2010 16:30:01
  • Zuletzt bearbeitet 16.06.2026 23:18:15

Use-after-free vulnerability in JavaScriptCore in WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) vi...

Exploit
  • EPSS 5%
  • Veröffentlicht 01.04.2010 22:30:00
  • Zuletzt bearbeitet 16.06.2026 23:17:53

The HTTP client functionality in Apple iPhone OS 3.1 on the iPhone 2G and 3.1.3 on the iPhone 3GS allows remote attackers to cause a denial of service (Safari, Mail, or Springboard crash) via a crafted innerHTML property of a DIV element, related to ...

Exploit
  • EPSS 2.54%
  • Veröffentlicht 29.03.2010 19:30:00
  • Zuletzt bearbeitet 16.06.2026 23:17:46

Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a MARQUEE element.