Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ipod touch vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2009-2794
The Exchange Support component in Apple iPhone OS prior to 3.1, and iPhone OS prior to 3.1.1 for iPod touch, does not properly implement the "Maximum inactivity time lock" functionality, which allows local users to bypass intended Microsoft Exchange restrictions by choo...
Apple Iphone Os 2.2.1
Apple Iphone Os 2.0.1
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
Apple Iphone Os 2.0.2
Apple Iphone Os 2.1
Apple Iphone Os 2.0.0
Apple Iphone Os 2.2
Apple Iphone Os 2.0
Apple Iphone Os 2.1.1
5
CVSSv2
CVE-2009-2797
The WebKit component in Safari in Apple iPhone OS prior to 3.1, and iPhone OS prior to 3.1.1 for iPod touch, does not remove usernames and passwords from URLs sent in Referer headers, which allows remote malicious users to obtain sensitive information by reading Referer logs on a...
Apple Iphone Os
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
4.3
CVSSv2
CVE-2007-5858
WebKit in Safari in Apple Mac OS X 10.4.11 and 10.5.1, iPhone 1.0 up to and including 1.1.2, and iPod touch 1.1 up to and including 1.1.2 allows remote malicious users to "navigate the subframes of any other page," which can be leveraged to conduct cross-site scripting ...
Apple Safari
2.1
CVSSv2
CVE-2009-1679
The Profiles component in Apple iPhone OS 1.0 up to and including 2.2.1 and iPhone OS for iPod touch 1.1 up to and including 2.2.1, when installing a configuration profile, can replace the password policy from Exchange ActiveSync with a weaker password policy, which allows physic...
Apple Iphone Os 1.0.2
Apple Iphone Os 2.2
Apple Iphone Os 1.1.1
Apple Iphone Os 2.0.0
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.0
Apple Iphone Os 1.0.1
Apple Iphone Os 2.1
Apple Iphone Os 2.1.1
Apple Iphone Os 2.0.2
Apple Iphone Os 2.0.1
Apple Iphone Os 2.2.1
Apple Iphone Os 1.1.5
Apple Iphone Os 1.1.4
Apple Iphone Os 1.0.0
Apple Iphone Os 2.0
Apple Iphone Os
Apple Ipod Touch
7.8
CVSSv2
CVE-2009-1683
The Telephony component in Apple iPhone OS 1.0 up to and including 2.2.1 and iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to cause a denial of service (device reset) via a crafted ICMP echo request, which triggers an assertion error related...
Apple Iphone Os 1.0.2
Apple Iphone Os 2.2
Apple Iphone Os 1.1.1
Apple Iphone Os 2.0.0
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.0
Apple Iphone Os 1.0.1
Apple Iphone Os 2.1
Apple Iphone Os 1.1.5
Apple Iphone Os 2.1.1
Apple Iphone Os 2.0.2
Apple Iphone Os 2.0.1
Apple Iphone Os 2.2.1
Apple Iphone Os 2.0
Apple Iphone Os 1.1.4
Apple Iphone Os 1.0.0
Apple Iphone Os
Apple Ipod Touch
5
CVSSv2
CVE-2009-1696
WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 uses predictable random numbers in JavaScript applications, which makes it easier for remote web servers to track the behavior of a Safari user...
Apple Safari 1.0
Apple Safari 1.1
Apple Safari 3.2.1
Apple Safari 3.2.3
Apple Safari 1.0.3
Apple Safari 1.2
Apple Safari 1.3
Apple Safari
Apple Safari 3.0.2
Apple Safari 3.1.1
Apple Safari 3.1
Apple Safari 1.3.1
Apple Safari 1.3.2
Apple Safari 0.9
Apple Safari 3.0.3
Apple Safari 3.1.2
Apple Safari 0.8
Apple Safari 2.0
Apple Safari 2.0.2
Apple Safari 2.0.4
Apple Safari 3.0
Apple Safari 3.0.4
4.3
CVSSv2
CVE-2009-1702
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to inject arbitrary web script or HTML via vectors related to imprope...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.0.3b
Apple Safari 3.0.3
Apple Safari 3.0.2b
Apple Safari 3.0.2
Apple Safari 2.0.0
Apple Safari 2.0
Apple Safari 3.1.1
Apple Safari 3.1.0
Apple Safari 3.0.1b
Apple Safari
Apple Safari 3.2.0
Apple Safari 3.1.2
Apple Safari 2.0.4
Apple Safari 3.1.0b
Apple Safari 3.0.0b
4.3
CVSSv2
CVE-2009-1724
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari prior to 4.0.2, as used on iPhone OS prior to 3.1, iPhone OS prior to 3.1.1 for iPod touch, and other platforms, allows remote malicious users to inject arbitrary web script or HTML via vectors related to parent a...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.2.2
Apple Safari 3.0.3b
Apple Safari 3.0.3
Apple Safari 3.1.2
Apple Safari 3.0.2
Apple Safari 2.0.4
Apple Safari 2.0.0
Apple Safari 2.0
Apple Safari 3.1.1
Apple Safari 3.1.0b
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari 3.1.0
Apple Safari 3.0.0b
1 EDB exploit
6.8
CVSSv2
CVE-2009-0145
CoreGraphics in Apple Mac OS X 10.4.11 and 10.5 prior to 10.5.7, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a craf...
Apple Mac Os X 10.5.2
Apple Mac Os X 10.5.4
Apple Mac Os X Server 10.5.6
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.5.0
Apple Mac Os X 10.5.0
Apple Mac Os X 10.5.5
Apple Mac Os X 10.5.6
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.4.11
Apple Mac Os X 10.5.1
Apple Mac Os X 10.5.3
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.5.3
6.8
CVSSv2
CVE-2008-0035
Unspecified vulnerability in Foundation, as used in Apple iPhone 1.0 up to and including 1.1.2, iPod touch 1.1 up to and including 1.1.2, and Mac OS X 10.5 up to and including 10.5.1, allows remote malicious users to cause a denial of service (application termination) or execute ...
Apple Safari
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »