Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple ipod touch 2.0.2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2008-3612
The Networking subsystem in Apple iPod touch 2.0 up to and including 2.0.2, and iPhone 2.0 up to and including 2.0.2, uses predictable TCP initial sequence numbers, which allows remote malicious users to spoof or hijack a TCP connection.
Apple Iphone Os
NA
CVE-2010-1810
FaceTime in Apple iOS prior to 4.1 on the iPhone and iPod touch does not properly handle invalid X.509 certificates, which allows man-in-the-middle malicious users to redirect calls via a crafted certificate.
Apple Iphone Os 3.0
Apple Iphone Os 3.2
Apple Iphone Os 3.1.3
Apple Iphone Os 1.0.2
Apple Iphone Os 2.2
Apple Iphone Os 1.1.1
Apple Iphone Os 2.0.0
Apple Iphone Os 3.1.2
Apple Iphone Os 3.0.1
Apple Iphone Os 4.0.1
Apple Iphone Os 4.0
Apple Iphone Os 2.2.1
Apple Iphone Os 1.1.5
Apple Iphone Os 1.1.4
Apple Iphone Os 3.2.1
Apple Iphone Os 2.1.1
Apple Iphone Os 2.1
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.2
Apple Iphone Os 1.0.0
Apple Iphone Os
Apple Iphone Os 3.1
NA
CVE-2010-1768
Unspecified vulnerability in Apple iTunes prior to 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod touch.
Apple Itunes 8.1
Apple Itunes 8.0.2
Apple Itunes 7.6.0
Apple Itunes 7.5.0
Apple Itunes 7.3.0
Apple Itunes 7.2.0
Apple Itunes 7.1.1
Apple Itunes 6.0.4
Apple Itunes 9.0.0
Apple Itunes 8.2.1
Apple Itunes 7.7.1
Apple Itunes 7.7.0
Apple Itunes 7.4.1
Apple Itunes 7.4.0
Apple Itunes 7.0.1
Apple Itunes 7.0.0
Apple Itunes 6.0.0
Apple Itunes 5.0.1
Apple Itunes 4.5.0
Apple Itunes 4.2.0
Apple Itunes 2.0.2
Apple Itunes 2.0.1
NA
CVE-2010-1797
Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType prior to 2.4.2, as used in Apple iOS prior to 4.0.2 on the iPhone and iPod touch and prior to 3.2.2 on the iPad, allow remote...
Apple Iphone Os 1.0.0
Apple Iphone Os 1.1.0
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.3
Apple Iphone Os 2.0
Apple Iphone Os 2.0.0
Apple Iphone Os 2.0.2
Apple Iphone Os 2.1
Apple Iphone Os 2.2.1
Apple Iphone Os 2.2
Apple Iphone Os 3.1.2
Apple Iphone Os 1.0.1
Apple Iphone Os 1.1.4
Apple Iphone Os 2.0.1
Apple Iphone Os 2.1.1
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
Apple Iphone Os 3.1.3
Apple Iphone Os 3.2
Apple Iphone Os 4.0
Apple Iphone Os 1.0.2
Apple Iphone Os 1.1.2
2 EDB exploits
1 Github repository
NA
CVE-2010-1407
WebKit in Apple iOS prior to 4 on the iPhone and iPod touch does not properly implement the history.replaceState method in certain situations involving IFRAME elements, which allows remote malicious users to obtain sensitive information via a crafted HTML document.
Apple Iphone Os 3.0
Apple Iphone Os 3.1.3
Apple Iphone Os 1.0.2
Apple Iphone Os 1.1.1
Apple Iphone Os
Apple Iphone Os 2.0.0
Apple Iphone Os 3.1.2
Apple Iphone Os 3.0.1
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.0
Apple Iphone Os 2.0.2
Apple Iphone Os 1.0.0
Apple Iphone Os 1.1.4
Apple Iphone Os 1.1.5
Apple Iphone Os 2.2.1
Apple Iphone Os 2.1.1
Apple Iphone Os 1.1.3
Apple Iphone Os 1.0.1
Apple Iphone Os 2.0.1
Apple Iphone Os 1.1
NA
CVE-2010-1775
Race condition in Passcode Lock in Apple iOS prior to 4 on the iPhone and iPod touch allows physically proximate malicious users to bypass intended passcode requirements, and pair a locked device with a computer and access arbitrary data, via vectors involving the initial boot.
Apple Iphone Os 3.0
Apple Iphone Os 3.1.3
Apple Iphone Os 1.0.2
Apple Iphone Os 1.1.1
Apple Iphone Os
Apple Iphone Os 2.0.0
Apple Iphone Os 3.1.2
Apple Iphone Os 3.0.1
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.4
Apple Iphone Os 2.2.1
Apple Iphone Os 1.1.0
Apple Iphone Os 2.0.1
Apple Iphone Os 2.0.2
Apple Iphone Os 1.1
Apple Iphone Os 1.0.0
Apple Iphone Os 1.0.1
Apple Iphone Os 1.1.5
Apple Iphone Os 2.1.1
NA
CVE-2010-1387
Use-after-free vulnerability in JavaScriptCore in WebKit in Apple iTunes prior to 9.2 on Windows, and Apple iOS prior to 4 on the iPhone and iPod touch, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via vectors related to...
Apple Itunes 6.0.2
Apple Itunes 4.7.2
Apple Itunes 8.2
Apple Itunes 7.0.2
Apple Itunes 7.4.1
Apple Itunes 7.3.2
Apple Itunes 7.4.0
Apple Itunes 6.0.0
Apple Itunes 5.0.0
Apple Itunes 7.6.1
Apple Itunes 4.7.0
Apple Itunes 4.7
Apple Itunes 4.0.1
Apple Itunes 4.0.0
Apple Itunes 7.7.0
Apple Itunes 7.7
Apple Itunes 7.4.2
Apple Itunes 7.1.1
Apple Itunes 9.0.0
Apple Itunes 8.0.0
Apple Itunes 6.0.5
Apple Itunes 4.9.0
NA
CVE-2010-0038
Recovery Mode in Apple iPhone OS 1.0 up to and including 3.1.2, and iPhone OS for iPod touch 1.1 up to and including 3.1.2, allows physically proximate malicious users to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corr...
Apple Iphone Os 3.1.2
Apple Iphone Os 2.0.0
Apple Iphone Os 2.0.1
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.2
Apple Iphone Os 2.0
Apple Iphone Os 1.0.1
Apple Iphone Os 2.2
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.0
Apple Iphone Os 3.0.1
Apple Iphone Os 1.1.4
Apple Iphone Os 2.1
Apple Iphone Os 2.0.2
Apple Iphone Os 1.1.5
Apple Iphone Os 1.0.2
Apple Iphone Os 1.0.0
Apple Iphone Os 2.1.1
Apple Iphone Os 3.0
Apple Iphone Os 1.1
Apple Iphone Os 2.2.1
Apple Iphone Os 1.0
NA
CVE-2009-3273
iPhone Mail in Apple iPhone OS, and iPhone OS for iPod touch, does not validate X.509 certificates, which allows man-in-the-middle malicious users to spoof arbitrary SSL e-mail servers via a crafted certificate.
Apple Iphone Os 2.1.1
Apple Iphone Os 2.0.2
Apple Iphone Os 2.0.0
Apple Iphone Os 1.1.4
Apple Iphone Os 1.1.3
Apple Iphone Os 2.1
Apple Iphone Os 1.0
Apple Iphone Os 2.2.1
Apple Iphone Os 1.0.1
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
Apple Iphone Os 2.0.1
Apple Iphone Os 1.1.2
Apple Iphone Os 1.0.2
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.0
Apple Iphone Os 1.0.0
Apple Iphone Os 2.2
Apple Iphone Os 1.1.5
Apple Iphone Os 2.0
Apple Iphone Os 1.1
NA
CVE-2009-2794
The Exchange Support component in Apple iPhone OS prior to 3.1, and iPhone OS prior to 3.1.1 for iPod touch, does not properly implement the "Maximum inactivity time lock" functionality, which allows local users to bypass intended Microsoft Exchange restrictions by choo...
Apple Iphone Os 2.2.1
Apple Iphone Os 2.0.1
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
Apple Iphone Os 2.0.2
Apple Iphone Os 2.1
Apple Iphone Os 2.0.0
Apple Iphone Os 2.2
Apple Iphone Os 2.0
Apple Iphone Os 2.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »