Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ipod touch vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-5858
WebKit in Safari in Apple Mac OS X 10.4.11 and 10.5.1, iPhone 1.0 up to and including 1.1.2, and iPod touch 1.1 up to and including 1.1.2 allows remote malicious users to "navigate the subframes of any other page," which can be leveraged to conduct cross-site scripting ...
Apple Safari
4.6
CVSSv2
CVE-2009-2794
The Exchange Support component in Apple iPhone OS prior to 3.1, and iPhone OS prior to 3.1.1 for iPod touch, does not properly implement the "Maximum inactivity time lock" functionality, which allows local users to bypass intended Microsoft Exchange restrictions by choo...
Apple Iphone Os 2.2.1
Apple Iphone Os 2.0.1
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
Apple Iphone Os 2.0.2
Apple Iphone Os 2.1
Apple Iphone Os 2.0.0
Apple Iphone Os 2.2
Apple Iphone Os 2.0
Apple Iphone Os 2.1.1
5
CVSSv2
CVE-2009-2797
The WebKit component in Safari in Apple iPhone OS prior to 3.1, and iPhone OS prior to 3.1.1 for iPod touch, does not remove usernames and passwords from URLs sent in Referer headers, which allows remote malicious users to obtain sensitive information by reading Referer logs on a...
Apple Iphone Os
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
2.1
CVSSv2
CVE-2009-1679
The Profiles component in Apple iPhone OS 1.0 up to and including 2.2.1 and iPhone OS for iPod touch 1.1 up to and including 2.2.1, when installing a configuration profile, can replace the password policy from Exchange ActiveSync with a weaker password policy, which allows physic...
Apple Iphone Os 1.0.2
Apple Iphone Os 2.2
Apple Iphone Os 1.1.1
Apple Iphone Os 2.0.0
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.0
Apple Iphone Os 1.0.1
Apple Iphone Os 2.1
Apple Iphone Os 2.1.1
Apple Iphone Os 2.0.2
Apple Iphone Os 2.0.1
Apple Iphone Os 2.2.1
Apple Iphone Os 1.1.5
Apple Iphone Os 1.1.4
Apple Iphone Os 1.0.0
Apple Iphone Os 2.0
Apple Iphone Os
Apple Ipod Touch
7.8
CVSSv2
CVE-2009-1683
The Telephony component in Apple iPhone OS 1.0 up to and including 2.2.1 and iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to cause a denial of service (device reset) via a crafted ICMP echo request, which triggers an assertion error related...
Apple Iphone Os 1.0.2
Apple Iphone Os 2.2
Apple Iphone Os 1.1.1
Apple Iphone Os 2.0.0
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.0
Apple Iphone Os 1.0.1
Apple Iphone Os 2.1
Apple Iphone Os 1.1.5
Apple Iphone Os 2.1.1
Apple Iphone Os 2.0.2
Apple Iphone Os 2.0.1
Apple Iphone Os 2.2.1
Apple Iphone Os 2.0
Apple Iphone Os 1.1.4
Apple Iphone Os 1.0.0
Apple Iphone Os
Apple Ipod Touch
5
CVSSv2
CVE-2009-1696
WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 uses predictable random numbers in JavaScript applications, which makes it easier for remote web servers to track the behavior of a Safari user...
Apple Safari 1.0
Apple Safari 1.1
Apple Safari 3.2.1
Apple Safari 3.2.3
Apple Safari 1.0.3
Apple Safari 1.2
Apple Safari 1.3
Apple Safari
Apple Safari 3.0.2
Apple Safari 3.1.1
Apple Safari 3.1
Apple Safari 1.3.1
Apple Safari 1.3.2
Apple Safari 0.9
Apple Safari 3.0.3
Apple Safari 3.1.2
Apple Safari 0.8
Apple Safari 2.0
Apple Safari 2.0.2
Apple Safari 2.0.4
Apple Safari 3.0
Apple Safari 3.0.4
4.3
CVSSv2
CVE-2009-1702
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to inject arbitrary web script or HTML via vectors related to imprope...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.0.3b
Apple Safari 3.0.3
Apple Safari 3.0.2b
Apple Safari 3.0.2
Apple Safari 2.0.0
Apple Safari 2.0
Apple Safari 3.1.1
Apple Safari 3.1.0
Apple Safari 3.0.1b
Apple Safari
Apple Safari 3.2.0
Apple Safari 3.1.2
Apple Safari 2.0.4
Apple Safari 3.1.0b
Apple Safari 3.0.0b
4.3
CVSSv2
CVE-2009-1724
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari prior to 4.0.2, as used on iPhone OS prior to 3.1, iPhone OS prior to 3.1.1 for iPod touch, and other platforms, allows remote malicious users to inject arbitrary web script or HTML via vectors related to parent a...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.2.2
Apple Safari 3.0.3b
Apple Safari 3.0.3
Apple Safari 3.1.2
Apple Safari 3.0.2
Apple Safari 2.0.4
Apple Safari 2.0.0
Apple Safari 2.0
Apple Safari 3.1.1
Apple Safari 3.1.0b
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari 3.1.0
Apple Safari 3.0.0b
1 EDB exploit
6.8
CVSSv2
CVE-2009-0145
CoreGraphics in Apple Mac OS X 10.4.11 and 10.5 prior to 10.5.7, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a craf...
Apple Mac Os X 10.5.2
Apple Mac Os X 10.5.4
Apple Mac Os X Server 10.5.6
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.5.0
Apple Mac Os X 10.5.0
Apple Mac Os X 10.5.5
Apple Mac Os X 10.5.6
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.4.11
Apple Mac Os X 10.5.1
Apple Mac Os X 10.5.3
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.5.3
9.3
CVSSv2
CVE-2010-1179
Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a large integer in the numcolors attribute of a recolorinfo element in a VML file, possibly a related issue to CVE-...
Apple Safari
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »