Apple

Ipod Touch

18 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2009-0958

  • EPSS 0.25%
  • Published 19.06.2009 16:30:00
  • Last modified 09.04.2025 00:30:58

Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 stores an exception for a hostname when the user accepts an untrusted Exchange server certificate, which causes it to be accepted without prompting in future usage and a...

4.3

CVE-2009-1702

Exploit
  • EPSS 0.57%
  • Published 10.06.2009 18:00:00
  • Last modified 09.04.2025 00:30:58

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to improper ...

9.3

CVE-2009-1701

Exploit
  • EPSS 9.72%
  • Published 10.06.2009 18:00:00
  • Last modified 09.04.2025 00:30:58

Use-after-free vulnerability in the JavaScript DOM implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to execute arbitrary code or cause a denial of...

4.3

CVE-2009-1700

Exploit
  • EPSS 0.88%
  • Published 10.06.2009 18:00:00
  • Last modified 09.04.2025 00:30:58

The XSLT implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle redirects, which allows remote attackers to read XML content from arbitrary web pages v...

9.3

CVE-2009-1698

Exploit
  • EPSS 7.36%
  • Published 10.06.2009 18:00:00
  • Last modified 09.04.2025 00:30:58

WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which a...

5

CVE-2008-3950

  • EPSS 5.38%
  • Published 16.09.2008 23:00:01
  • Last modified 09.04.2025 00:30:58

Off-by-one error in the _web_drawInRect:withFont:ellipsis:alignment:measureOnly function in WebKit in Safari in Apple iPhone 1.1.4 and 2.0 and iPod touch 1.1.4 and 2.0 allows remote attackers to cause a denial of service (browser crash) via a JavaScr...

7.1

CVE-2008-3631

  • EPSS 0.86%
  • Published 11.09.2008 01:13:09
  • Last modified 09.04.2025 00:30:58

Application Sandbox in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, does not properly isolate third-party applications, which allows attackers to read arbitrary files in a third-party application's sandbox via a different third-p...

9.3

CVE-2008-3632

  • EPSS 10.57%
  • Published 11.09.2008 01:13:09
  • Last modified 09.04.2025 00:30:58

Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a web page with crafted Cascading Style...