CVSS: 8.8EPSS: 0%CPEs: 12EXPL: 0CVE-2013-5196 – Apple Security Advisory 2013-12-16-1
https://notcve.org/view.php?id=CVE-2013-5196
18 Dec 2013 — WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1. WebKit, de la manera en que se utiliza en Apple Safari anteriores a 6.1.1 y 7.x anteriores a 7.0.1, permite a atacantes remotos ejecutar código arbitrario o causar denegación de servicio (corrupción de memoria y caída ... • http://archives.neohapsis.com/archives/bugtraq/2013-12/0086.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 12EXPL: 0CVE-2013-5197 – Apple Security Advisory 2013-12-16-1
https://notcve.org/view.php?id=CVE-2013-5197
18 Dec 2013 — WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1. WebKit, de la manera en que se utiliza en Apple Safari anteriores a 6.1.1 y 7.x anteriores a 7.0.1, permite a atacantes remotos ejecutar código arbitrario o causar denegación de servicio (corrupción de memoria y caída ... • http://archives.neohapsis.com/archives/bugtraq/2013-12/0086.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 12EXPL: 0CVE-2013-5198 – Apple Security Advisory 2013-12-16-1
https://notcve.org/view.php?id=CVE-2013-5198
18 Dec 2013 — WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1. WebKit, de la manera en que se utiliza en Apple Safari anteriores a 6.1.1 y 7.x anteriores a 7.0.1, permite a atacantes remotos ejecutar código arbitrario o causar denegación de servicio (corrupción de memoria y caída ... • http://archives.neohapsis.com/archives/bugtraq/2013-12/0086.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 12EXPL: 0CVE-2013-5199 – Apple Security Advisory 2013-12-16-1
https://notcve.org/view.php?id=CVE-2013-5199
18 Dec 2013 — WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1. WebKit, de la manera en que se utiliza en Apple Safari anteriores a 6.1.1 y 7.x anteriores a 7.0.1, permite a atacantes remotos ejecutar código arbitrario o causar denegación de servicio (corrupción de memoria y caída ... • http://archives.neohapsis.com/archives/bugtraq/2013-12/0086.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 12EXPL: 0CVE-2013-5225 – Apple Security Advisory 2013-12-16-1
https://notcve.org/view.php?id=CVE-2013-5225
18 Dec 2013 — WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1. WebKit, de la manera en que se utiliza en Apple Safari anteriores a 6.1.1 y 7.x anteriores a 7.0.1, permite a atacantes remotos ejecutar código arbitrario o causar denegación de servicio (corrupción de memoria y caída ... • http://archives.neohapsis.com/archives/bugtraq/2013-12/0086.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2013-5193 – Apple Security Advisory 2013-11-14-1
https://notcve.org/view.php?id=CVE-2013-5193
15 Nov 2013 — The App Store component in Apple iOS before 7.0.4 does not properly enforce an intended transaction-time password requirement, which allows local users to complete a (1) App purchase or (2) In-App purchase by leveraging previous entry of Apple ID credentials. El componente App Store en Apple iOS anterior a la versión 7.0.4 no aplica adecuadamente un requerimiento de contraseña transaction-time intencionada, lo que permite a usuarios locales completar (1) una compra de App o (2) una compra In-App mediante el... • http://lists.apple.com/archives/security-announce/2013/Nov/msg00000.html • CWE-255: Credentials Management Errors •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2013-5164
https://notcve.org/view.php?id=CVE-2013-5164
24 Oct 2013 — Multiple race conditions in the Phone app in Apple iOS before 7.0.3 allow physically proximate attackers to bypass the locked state, and dial the telephone numbers in arbitrary Contacts entries, by visiting the Contacts pane. Múltiples condiciones de carrera en la aplicación Phone de Apple iOS anterior a 7.0.3 permite a atancates con acceso físico al dispositivo saltarse el estado de bloqueo, y marcar números de teléfono en las entradas de Contactos, visitando el panel de Contactos. • http://lists.apple.com/archives/security-announce/2013/Oct/msg00002.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2013-5162
https://notcve.org/view.php?id=CVE-2013-5162
24 Oct 2013 — Passcode Lock in Apple iOS before 7.0.3 on iPhone devices allows physically proximate attackers to bypass the passcode-failure disabled state by leveraging certain incorrect visibility of the passcode-entry view after use of the Phone app. Passcode Lock en Apple iOS anteriores a 7.0.3 en dispositivos iPhone permite a atacantes físicamente próximos sortear el estado desactivado de fallo de passcode mediante el aprovechamiento de cierta visibilidad incorrecta de la vista de entrada de passcodes después de usa... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00002.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.6EPSS: 0%CPEs: 3EXPL: 0CVE-2013-5144
https://notcve.org/view.php?id=CVE-2013-5144
24 Oct 2013 — Passcode Lock in Apple iOS before 7.0.3 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by tapping the emergency-call button during a certain notification and camera-pane state to trigger a NULL pointer dereference. Bloqueo con código en el iOS de Apple antes de 7.0.3 en los dispositivos iPhone permite a los atacantes físicamente próximos evitar la clave de de acceso y marcar números telefónicos arbitrarios, pulsando e... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00002.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2013-5160 – Apple Security Advisory 2013-09-26-1
https://notcve.org/view.php?id=CVE-2013-5160
27 Sep 2013 — Passcode Lock in Apple iOS before 7.0.2 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by making a series of taps of the emergency-call button to trigger a NULL pointer dereference. Passcode Lock en Apple iOS anteriores a 7.0.2 en dispositivos iPhone permite a atacantes físicamente próximos sortear la contraseña requerida, y marcar números de teléfono arbitrarios, dando una serie de toques en el botón de llamada de em... • http://lists.apple.com/archives/security-announce/2013/Sep/msg00009.html • CWE-264: Permissions, Privileges, and Access Controls •