Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apple iphone os 5.0 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2011-3442
The kernel in Apple iOS prior to 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which allows local users to execute arbitrary unsigned code via a crafted app.
Apple Iphone Os 4.3.0Apple Iphone Os 4.3.1Apple Iphone Os 5.0Apple Iphone Os 4.3.2Apple Iphone Os 4.3.3Apple Iphone Os 4.3.5Apple Iphone Os 4.3.4
NA
CVE-2012-0672
WebKit in Apple iOS prior to 5.1.1 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
Apple Iphone Os 4.3.0Apple Iphone Os 4.2.8Apple Iphone Os 4.0.1Apple Iphone Os 3.1Apple Iphone Os 4.3.5Apple Iphone Os 5.0Apple Iphone OsApple Iphone Os 4.3.3Apple Iphone Os 4.1Apple Iphone Os 4.0Apple Iphone Os 3.2Apple Iphone Os 3.2.2Apple Iphone Os 3.0Apple Iphone Os 5.0.1Apple Iphone Os 4.3.2Apple Iphone Os 4.3.1Apple Iphone Os 4.0.2Apple Iphone Os 3.2.1Apple Iphone Os 4.2.5Apple Iphone Os 4.2.1Apple Iphone Os 3.1.3Apple Iphone Os 3.1.2
NA
CVE-2012-0674
Safari in Apple iOS prior to 5.1.1 allows remote malicious users to spoof the location bar's URL via a crafted web site.
Apple Iphone Os 4.0Apple Iphone Os 4.0.2Apple Iphone Os 4.0.1Apple Iphone Os 4.3.5Apple Iphone Os 5.0Apple Iphone Os 4.3.2Apple Iphone Os 4.3.1Apple Iphone Os 4.3.0Apple Iphone Os 4.2.8Apple Iphone Os 3.2.1Apple Iphone Os 3.1Apple Iphone Os 5.0.1Apple Iphone OsApple Iphone Os 4.2.1Apple Iphone Os 3.2Apple Iphone Os 3.2.2Apple Iphone Os 3.1.3Apple Iphone Os 4.3.3Apple Iphone Os 4.2.5Apple Iphone Os 4.1Apple Iphone Os 3.1.2Apple Iphone Os 3.0
NA
CVE-2013-4616
The WifiPasswordController generateDefaultPassword method in Preferences in Apple iOS 6 and previous versions relies on the UITextChecker suggestWordInLanguage method for selection of Wi-Fi hotspot WPA2 PSK passphrases, which makes it easier for remote malicious users to obtain a...
Apple Iphone Os 5.1.1Apple Iphone Os 4.0.2Apple Iphone Os 4.0.1Apple Iphone Os 4.0Apple Iphone Os 3.2.2Apple Iphone Os 2.0.0Apple Iphone Os 2.0Apple Iphone Os 1.1.5Apple Iphone Os 1.1.4Apple Iphone Os 4.3.3Apple Iphone Os 4.3.2Apple Iphone Os 4.3.1Apple Iphone Os 4.3.0Apple Iphone Os 3.0.1Apple Iphone Os 3.0Apple Iphone Os 2.2.1Apple Iphone Os 2.2Apple Iphone Os 1.0.2Apple Iphone Os 1.0.1Apple Iphone Os 1.0.0Apple Iphone OsApple Iphone Os 5.0.1
NA
CVE-2012-3749
The extensions APIs in the kernel in Apple iOS prior to 6.0.1 provide kernel addresses in responses that contain an OSBundleMachOHeaders key, which makes it easier for remote malicious users to bypass the ASLR protection mechanism via a crafted app.
Apple Iphone Os 4.3.5Apple Iphone Os 4.3.3Apple Iphone Os 4.1Apple Iphone Os 4.0.2Apple Iphone Os 3.1.2Apple Iphone Os 3.1Apple Iphone Os 2.0.1Apple Iphone Os 2.0.0Apple Iphone Os 1.1.0Apple Iphone Os 1.0.2Apple Iphone Os 5.0.1Apple Iphone Os 5.0Apple Iphone Os 4.2.5Apple Iphone Os 4.2.1Apple Iphone Os 3.2Apple Iphone Os 3.1.3Apple Iphone Os 2.1Apple Iphone Os 2.0.2Apple Iphone Os 1.1.2Apple Iphone Os 1.1.1Apple Iphone Os 4.3.2Apple Iphone Os 4.3.1
NA
CVE-2012-3750
The Passcode Lock implementation in Apple iOS prior to 6.0.1 does not properly manage the lock state, which allows physically proximate malicious users to bypass an intended passcode requirement and access Passbook passes via unspecified vectors.
Apple Iphone OsApple Iphone Os 4.3.1Apple Iphone Os 4.3.0Apple Iphone Os 4.0Apple Iphone Os 5.0Apple Iphone Os 4.3.5Apple Iphone Os 4.2.1Apple Iphone Os 4.1Apple Iphone Os 3.1.2Apple Iphone Os 3.1Apple Iphone Os 2.0.2Apple Iphone Os 2.0.1Apple Iphone Os 1.1.1Apple Iphone Os 1.1.0Apple Iphone Os 5.1.1Apple Iphone Os 5.0.1Apple Iphone Os 4.2.8Apple Iphone Os 4.2.5Apple Iphone Os 3.2Apple Iphone Os 3.1.3Apple Iphone Os 2.1.1Apple Iphone Os 2.1
NA
CVE-2012-3735
The Passcode Lock implementation in Apple iOS prior to 6 does not properly interact with the "Slide to Power Off" feature, which allows physically proximate malicious users to see the most recently used third-party app by watching the device's screen.
Apple Iphone Os 1.1.3Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 2.0.2Apple Iphone Os 2.1Apple Iphone Os 3.1.2Apple Iphone Os 3.1.3Apple Iphone Os 3.2Apple Iphone Os 4.2.1Apple Iphone Os 4.2.5Apple Iphone Os 5.0Apple Iphone Os 5.0.1Apple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.1.5Apple Iphone Os 2.0Apple Iphone Os 2.2.1Apple Iphone Os 3.0Apple Iphone Os 4.0Apple Iphone Os 4.0.1Apple Iphone Os 4.3.1Apple Iphone Os 4.3.2
NA
CVE-2012-3724
CFNetwork in Apple iOS prior to 6 does not properly identify the host portion of a URL, which allows remote malicious users to obtain sensitive information by leveraging the construction of an HTTP request with an incorrect hostname derived from a malformed URL.
Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 2.0Apple Iphone Os 2.0.0Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 2.0.1Apple Iphone Os 2.0.2Apple Iphone Os 3.1Apple Iphone Os 3.1.2Apple Iphone Os 4.1Apple Iphone Os 4.2.1Apple Iphone Os 4.3.5Apple Iphone Os 5.0Apple Iphone Os 1.0.0Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.2Apple Iphone Os 2.2.1Apple Iphone Os 3.2.2Apple Iphone Os 4.0Apple Iphone Os 4.3.0
NA
CVE-2012-3728
The kernel in Apple iOS prior to 6 dereferences invalid pointers during the handling of packet-filter data structures, which allows local users to gain privileges via a crafted program that makes packet-filter ioctl calls.
Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 2.1Apple Iphone Os 2.1.1Apple Iphone Os 3.2Apple Iphone Os 3.2.1Apple Iphone Os 4.2.5Apple Iphone Os 4.2.8Apple Iphone Os 5.0.1Apple Iphone OsApple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 2.0Apple Iphone Os 2.0.0Apple Iphone Os 3.0.1Apple Iphone Os 3.1Apple Iphone Os 1.0.0Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.2Apple Iphone Os 2.2.1Apple Iphone Os 3.0
NA
CVE-2012-3731
Mail in Apple iOS prior to 6 does not properly implement the Data Protection feature for e-mail attachments, which allows physically proximate malicious users to bypass an intended passcode requirement via unspecified vectors.
Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 2.0.1Apple Iphone Os 2.0.2Apple Iphone Os 3.1Apple Iphone Os 3.1.2Apple Iphone Os 3.1.3Apple Iphone Os 4.1Apple Iphone Os 4.2.1Apple Iphone Os 4.3.5Apple Iphone Os 5.0Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 2.1Apple Iphone Os 2.1.1Apple Iphone Os 3.2Apple Iphone Os 3.2.1Apple Iphone Os 4.2.5Apple Iphone Os 4.2.8Apple Iphone Os 5.0.1Apple Iphone OsApple Iphone Os 1.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook