Shodan
Vulnerabilities
Vulnerable Software
Apple:  >> Mac Os X  >> 10.6.7  Security Vulnerabilities
CVE-2014-4378
CoreGraphics in Apple iOS before 8 and Apple TV before 7 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted PDF document.
CVSS Score
5.8
EPSS Score
0.021
Published
2014-09-18
CVE-2014-4379
An unspecified IOHIDFamily function in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking to prevent reading of kernel pointers, which allows attackers to bypass the ASLR protection mechanism via a crafted application.
CVSS Score
7.1
EPSS Score
0.019
Published
2014-09-18
CVE-2014-4381
Libnotify in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code as root via a crafted application.
CVSS Score
9.3
EPSS Score
0.017
Published
2014-09-18
CVE-2014-4388
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly validate IODataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via an application that provides crafted values in unspecified metadata fields, a different vulnerability than CVE-2014-4418.
CVSS Score
7.8
EPSS Score
0.005
Published
2014-09-18
CVE-2014-4389
Integer overflow in IOKit in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted API arguments.
CVSS Score
9.3
EPSS Score
0.017
Published
2014-09-18
CVE-2014-4404
Known exploited
Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties.
CVSS Score
7.8
EPSS Score
0.62
Published
2014-09-18
CVE-2014-4405
IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an application that provides crafted key-mapping properties.
CVSS Score
9.3
EPSS Score
0.018
Published
2014-09-18
CVE-2014-4407
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly initialize kernel memory, which allows attackers to obtain sensitive memory-content information via an application that makes crafted IOKit function calls.
CVSS Score
3.3
EPSS Score
0.002
Published
2014-09-18
CVE-2014-4408
The rt_setgate function in the kernel in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service (out-of-bounds read and device crash) via a crafted call.
CVSS Score
6.9
EPSS Score
0.0
Published
2014-09-18
CVE-2014-0560
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.
CVSS Score
10.0
EPSS Score
0.152
Published
2014-09-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved