CVE-2015-1084
|
The user interface in WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, does not display URLs consistently, which makes it easier for remote attackers to conduct phishing attacks via a crafted URL.
Published:
March 18, 2015; 06:59:15 PM -04:00
|
V2: 5.0 MEDIUM
|
CVE-2015-1083
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:14 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1082
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:13 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1081
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:12 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1080
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:11 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1079
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:10 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1078
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:10 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1077
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:09 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1076
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:08 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1074
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:06 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1073
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:05 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1072
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:04 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1071
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:03 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1070
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:02 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1069
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:01 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1068
|
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.
Published:
March 18, 2015; 06:59:00 PM -04:00
|
V2: 6.8 MEDIUM
|
CVE-2015-1065
|
Multiple buffer overflows in iCloud Keychain in Apple iOS before 8.2 and Apple OS X through 10.10.2 allow man-in-the-middle attackers to execute arbitrary code by modifying the client-server data stream during keychain recovery.
Published:
March 12, 2015; 06:59:09 AM -04:00
|
V2: 5.4 MEDIUM
|
CVE-2015-1064
|
Springboard in Apple iOS before 8.2 allows physically proximate attackers to bypass an intended activation requirement and read the home screen by leveraging an application crash during the activation process.
Published:
March 12, 2015; 06:59:08 AM -04:00
|
V2: 1.9 LOW
|
CVE-2015-1063
|
CoreTelephony in Apple iOS before 8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and device restart) via a Class 0 SMS message.
Published:
March 12, 2015; 06:59:07 AM -04:00
|
V2: 7.8 HIGH
|
CVE-2015-1062
|
MobileStorageMounter in Apple iOS before 8.2 and Apple TV before 7.1 does not delete invalid disk-image folders, which allows attackers to create folders in arbitrary filesystem locations via a crafted app.
Published:
March 12, 2015; 06:59:06 AM -04:00
|
V2: 5.0 MEDIUM
|