Vendor Dictionary: Apple Inc.

Apple Inc.

Short Name:	Apple
Previous Names:	Apple Computer, Inc.
URL:	http://www.apple.com/ [visit link]
Email:	[None Entered]
Security URL:	http://www.apple.com/support/security/ [visit link]
Security Email:	product-securityapple.com
Knowledge Base:	http://www.apple.com/support/ [visit link]
Notes:	PGP key is available at https://www.apple.com/support/security/pgp/

Vulnerabilities by Vendor Product

Apple Inc.

« Previous 1 2 3 4 5 6 7 8 Next »

Apple Inc.

Apple iOS: 6.0.2; OSVDB ID: 90246 Apple iPhone Sleep Button Canceled Call Screen Lock Bypass; OSVDB ID: 89561 Cisco WebEx Training Center Crafted Request Arbitrary Training-center Recording Manipulation; OSVDB ID: 89647 WebKit Website Handling Unspecified Memory Corruption (2013-0968); OSVDB ID: 89645 WebKit Website Handling Unspecified Memory Corruption (2013-0949); OSVDB ID: 89649 WebKit Website Handling Unspecified Memory Corruption (2013-0958); OSVDB ID: 89646 WebKit Website Handling Unspecified Memory Corruption (2013-0948); OSVDB ID: 89648 WebKit Website Handling Unspecified Memory Corruption (2013-0959); OSVDB ID: 89650 WebKit Website Handling Unspecified Memory Corruption (2013-0956); OSVDB ID: 89651 WebKit Website Handling Unspecified Memory Corruption (2013-0955); OSVDB ID: 89652 WebKit Website Handling Unspecified Memory Corruption (2013-0954); OSVDB ID: 89653 WebKit Website Handling Unspecified Memory Corruption (2013-0953); OSVDB ID: 89654 WebKit Website Handling Unspecified Memory Corruption (2013-0952); OSVDB ID: 89655 WebKit Website Handling Unspecified Memory Corruption (2013-0951); OSVDB ID: 89656 WebKit Website Handling Unspecified Memory Corruption (2013-0950); OSVDB ID: 89657 WebKit Cross-Origin Copy Pasted Content Handling XSS; OSVDB ID: 89659 Apple iOS Kernel User-mode Pointer Validation First Page Kernel Memory Disclosure; OSVDB ID: 89660 Apple iOS Identity Services AppleID Certificate Validation Weakness Authentication Bypass; OSVDB ID: 89658 Apple iOS StoreKit Safari Preferences Smart App Banner Handling JavaScript Re-enabling Weakness; 6.0.1; OSVDB ID: 90246 Apple iPhone Sleep Button Canceled Call Screen Lock Bypass; 6.1; OSVDB ID: 90246 Apple iPhone Sleep Button Canceled Call Screen Lock Bypass; 6.1.2; OSVDB ID: 90246 Apple iPhone Sleep Button Canceled Call Screen Lock Bypass; OSVDB ID: 91526 Apple iOS / TV dyld Mach-O Executable File Handling Local Privilege Escalation; OSVDB ID: 91527 Apple iOS / TV USB IOUSBDeviceFamily Driver Pipe Object Pointer Handling Local Privilege Escalation; OSVDB ID: 91529 Apple iOS Lockdown Symlink File Permission Manipulation; OSVDB ID: 91220 WebKit SVGViewSpec::viewTarget SVG Element Handling Type Confusion Arbitrary Code Execution; 5.1.1; OSVDB ID: 85620 Apple iOS Passcode Lock Emergency Dailer Screen FaceTime Call Execution; OSVDB ID: 85622 Apple iOS Telephony SMS Message Return Address Spoofing Weakness; OSVDB ID: 85637 Apple iOS CFNetwork URL Handling Information Disclosure; OSVDB ID: 85621 Apple iOS System Logs Sandboxed App /var/log Directory Information Disclosure; OSVDB ID: 85623 Apple iOS Passcode Lock FaceTime Call Termination Handling Screen Lock Bypass; OSVDB ID: 85624 Apple iOS Messages Email Response Handling Incorrect Email Address Display; OSVDB ID: 85625 Apple iOS Mail S/MIME Signed Message 'From' Address Spoofing Weakness; OSVDB ID: 85626 Apple iOS Mail Attachment Handling Identical Content-ID Attachment Display Weakness; OSVDB ID: 85629 Apple iOS Kernel Packet Filter IOTCL Parsing Invalid Pointer Dereference Local Privilege Escalation; OSVDB ID: 85630 Apple iOS IPSec Racoon Configuration File Handling Overflow; OSVDB ID: 85632 Apple iOS Safari Unicode Character Secure Connection Lock Icon Spoofing; OSVDB ID: 85633 Apple iOS UIKit UIWebView Unencrypted File Disclosure; OSVDB ID: 85634 Apple iOS Passcode Lock Time Spoofing Photo Disclosure; OSVDB ID: 85635 Apple iOS ImageIO JPEG File Handling Double-free Arbitrary Code Execution; OSVDB ID: 85636 Apple iOS Passcode Lock Camera Handling Screen Lock Bypass; OSVDB ID: 85639 Apple iOS Restrictions Purchase Authentication Bypass; OSVDB ID: 85638 Apple iOS Telephony SMS User Data Header Handling Off-by-one Overflow; OSVDB ID: 85640 Apple iOS Passcode Lock Slide to Power Off Slider Partial Screen Lock Bypass; OSVDB ID: 85642 Apple iOS Office Viewer Office File Handling Temporary File Information Disclosure; OSVDB ID: 85643 Apple iOS Mail Data Protection Email Attachment Access Restriction Weakness; OSVDB ID: 85641 Apple iOS Passcode Lock State Management Screen Lock Bypass; OSVDB ID: 85628 Apple iOS WiFi Network Connection Handling Previously Accessed Network MAC Address Disclosure; OSVDB ID: 85627 Apple iOS Kernel Berkeley Packet Filter (BPF) Interpreter Local Memory Disclosure; OSVDB ID: 85631 WebKit Unspecified Memory Corruption (2012-3747); 6.0.0; OSVDB ID: 86872 Apple iOS Passcode Lock Component Passbook Pass Bypass; 6.0.0; OSVDB ID: 86871 Apple iOS Kernel API Handling OSBundleMachOHeaders Key Disclosure; 5.1; OSVDB ID: 80260 Apple Safari iOS window.open() URL Bar Spoofing Weakness; 5.0.1; OSVDB ID: 79969 Apple iOS CFNetwork Component URL Handling Unspecified Information Disclosure; OSVDB ID: 79914 Apple iOS JavaScriptCore Component array.splice Method Length Calculation Handling Memory Corruption; OSVDB ID: 79970 Apple iOS HFS Component HFS Catalog File Handling Underflow; OSVDB ID: 79972 Apple iOS Race Condition Passcode Lock Screen Bypass; OSVDB ID: 79971 Apple iOS Kernel Debug System Call Handling Sandbox Restriction Bypass; OSVDB ID: 79973 Apple iOS Siri Locked Screen Bypass Voice Command Parsing Message Forwarding; OSVDB ID: 79974 Apple iOS Racoon Configuration File Handling Format String; OSVDB ID: 79967 WebKit Unspecified XSS (2012-0588); OSVDB ID: 79968 WebKit Unspecified XSS (2012-0589); OSVDB ID: 79955 WebKit Unspecified Memory Corruption (2012-0633); OSVDB ID: 79956 WebKit Unspecified Memory Corruption (2012-0635); OSVDB ID: 79953 WebKit Unspecified Memory Corruption (2012-0631); OSVDB ID: 79952 WebKit Unspecified Memory Corruption (2012-0630); OSVDB ID: 79951 WebKit Unspecified Memory Corruption (2012-0629); OSVDB ID: 79954 WebKit Unspecified Memory Corruption (2012-0632); OSVDB ID: 79949 WebKit Unspecified Memory Corruption (2012-0627); OSVDB ID: 79910 WebKit Inline Box Wrapper Handling Use-after-free Issue; OSVDB ID: 79950 WebKit Unspecified Memory Corruption (2012-0628); OSVDB ID: 79912 WebKit Container Node Handling Use-after-free Issue; OSVDB ID: 79945 WebKit Unspecified Memory Corruption (2012-0623); OSVDB ID: 79946 WebKit Unspecified Memory Corruption (2012-0624); OSVDB ID: 79944 WebKit Unspecified Memory Corruption (2012-0622); OSVDB ID: 79943 WebKit Unspecified Memory Corruption (2012-0621); OSVDB ID: 79941 WebKit Unspecified Memory Corruption (2012-0619); OSVDB ID: 79940 WebKit Unspecified Memory Corruption (2012-0618); OSVDB ID: 79939 WebKit Unspecified Memory Corruption (2012-0617); OSVDB ID: 79938 WebKit Unspecified Memory Corruption (2012-0616); OSVDB ID: 79942 WebKit Unspecified Memory Corruption (2012-0620); OSVDB ID: 79937 WebKit Unspecified Memory Corruption (2012-0615); OSVDB ID: 79936 WebKit Unspecified Memory Corruption (2012-0614); OSVDB ID: 79948 WebKit Website Handling Unspecified Memory Corruption (2012-0626); OSVDB ID: 79905 WebKit Selection selectstart Event Handling Root Removal Use-after-free Issue; OSVDB ID: 79965 WebKit Unspecified XSS (2012-0586); OSVDB ID: 79906 WebKit SVG Transform Animation Handling Memory Corruption; OSVDB ID: 79907 WebKit 'RenderBlock::columnsBlockForSpanningElement ' Function Use-after-free Issue; OSVDB ID: 79935 WebKit Website Handling Unspecified Memory Corruption (2012-0613); OSVDB ID: 79934 WebKit Website Handling Unspecified Memory Corruption (2012-0612); OSVDB ID: 79933 WebKit Website Handling Unspecified Memory Corruption (2012-0611); OSVDB ID: 79975 WebKit Unspecified Drag and Drop Actions XSS; OSVDB ID: 79932 WebKit Website Handling Unspecified Memory Corruption (2012-0610); OSVDB ID: 79931 WebKit Website Handling Unspecified Memory Corruption (2012-0609); OSVDB ID: 79930 WebKit Website Handling Unspecified Memory Corruption (2012-0608); OSVDB ID: 79929 WebKit Website Handling Unspecified Memory Corruption (2012-0607); OSVDB ID: 79928 WebKit Website Handling Unspecified Memory Corruption (2012-0606); OSVDB ID: 79927 WebKit Website Handling Unspecified Memory Corruption (2012-0605); OSVDB ID: 79926 WebKit Website Handling Unspecified Memory Corruption (2012-0604); OSVDB ID: 79925 WebKit Website Handling Unspecified Memory Corruption (2012-0603); OSVDB ID: 79923 WebKit Website Handling Unspecified Memory Corruption (2012-0602); OSVDB ID: 79924 WebKit Website Handling Unspecified Memory Corruption (2012-0601); OSVDB ID: 79922 WebKit Website Handling Unspecified Memory Corruption (2012-0600); OSVDB ID: 79921 WebKit Website Handling Unspecified Memory Corruption (2012-0599); OSVDB ID: 79920 WebKit Website Handling Unspecified Memory Corruption (2012-0598); OSVDB ID: 79919 WebKit Website Handling Unspecified Memory Corruption (2012-0597); OSVDB ID: 79918 WebKit Website Handling Unspecified Memory Corruption (2012-0596); OSVDB ID: 79917 WebKit Website Handling Unspecified Memory Corruption (2012-0595); OSVDB ID: 79908 WebKit SimplifiedBackwardsTextIterator first-letter Rule Incorrect Offset Returned Out-of-bounds Read Issue; OSVDB ID: 79909 WebKit Media Content Handling Bad Cast Memory Corruption; OSVDB ID: 79916 WebKit Website Handling Unspecified Memory Corruption (2012-0594); OSVDB ID: 79915 WebKit Website Handling Unspecified Memory Corruption (2012-0593); OSVDB ID: 79913 WebKit Website Handling Unspecified Memory Corruption (2012-0591); OSVDB ID: 79911 WebKit Floats Removed Originating Line Handling Use-after-free Issue; 4.3.3; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.3.2; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.3.1; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.3.0; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.2.8; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.2.5; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.2.1; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.1; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.0.2; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.0.1; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.0; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 3.2.2; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 3.2.1; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 3.1; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 4.3.5; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587); 5.0; OSVDB ID: 79966 WebKit Unspecified XSS (2012-0587)

Airport Extreme: Firmware 5.5.0; OSVDB ID: 12864 Apple AirPort Express/Extreme WDS UDP DoS; Firmware 5.4.x; OSVDB ID: 12864 Apple AirPort Express/Extreme WDS UDP DoS; Firmware 5.3.x; OSVDB ID: 12864 Apple AirPort Express/Extreme WDS UDP DoS; Firmware 5.2.x; OSVDB ID: 12864 Apple AirPort Express/Extreme WDS UDP DoS; Firmware 5.1.x; OSVDB ID: 12864 Apple AirPort Express/Extreme WDS UDP DoS; Firmware 5.0.0; OSVDB ID: 12864 Apple AirPort Express/Extreme WDS UDP DoS; 5.6; OSVDB ID: 22244 Apple AirPort Extreme Base Station Crafted Packet Network Interface DoS; 6.2; OSVDB ID: 22244 Apple AirPort Extreme Base Station Crafted Packet Network Interface DoS

Apple iOS: 6.1.2

Airport Express: Firmware 6.0.0; OSVDB ID: 12864 Apple AirPort Express/Extreme WDS UDP DoS; Firmware 5.x; OSVDB ID: 12864 Apple AirPort Express/Extreme WDS UDP DoS

Apple iOS: 6.1.2; OSVDB ID: 91525 Apple iOS / TV Kernel ARM Prefetch Abort Handler Local Kernel Structure Address Disclosure

AirPort Base Station: All Versions; OSVDB ID: 12073 Apple AirPort Base Station Authentication Credential Encryption Weakness

AirPort Extreme Base Station: 802.11n; Firmware 7.5.1; OSVDB ID: 70151 Apple Airport Multiple Products Network Bridge Crafted DHCP Reply Remote DoS; OSVDB ID: 70150 Apple Airport Multiple Products Application-Level Gateway FTP PORT Command Intranet Traffic IP Address Hijack; OSVDB ID: 70149 Apple AirPort Multiple Products ICMPv6 Router Advertisement / Neighbor Discovery Packet Saturation Remote DoS

Apple TV: 4.0; OSVDB ID: 71519 Apple ImageIO / Apple TV Library JPEG-Encoded TIFF Image Handling Overflow; 4.1; OSVDB ID: 71519 Apple ImageIO / Apple TV Library JPEG-Encoded TIFF Image Handling Overflow; 5.1.1; OSVDB ID: 86688 Broadcom BCM4325 / BCM4329 Chipset RSN (802.11i) Information Element Handling Remote DoS; OSVDB ID: 86871 Apple iOS Kernel API Handling OSBundleMachOHeaders Key Disclosure; 5.1.0; OSVDB ID: 86873 WebKit JavaScript Array Handling Race Condition Arbitrary Code Execution; 5.2.0; OSVDB ID: 91525 Apple iOS / TV Kernel ARM Prefetch Abort Handler Local Kernel Structure Address Disclosure; OSVDB ID: 91526 Apple iOS / TV dyld Mach-O Executable File Handling Local Privilege Escalation; OSVDB ID: 91527 Apple iOS / TV USB IOUSBDeviceFamily Driver Pipe Object Pointer Handling Local Privilege Escalation; 5.2.0; 5.2.0

AirPort Express Base Station: 802.11n; Firmware 7.5.1; OSVDB ID: 70151 Apple Airport Multiple Products Network Bridge Crafted DHCP Reply Remote DoS; OSVDB ID: 70150 Apple Airport Multiple Products Application-Level Gateway FTP PORT Command Intranet Traffic IP Address Hijack; OSVDB ID: 70149 Apple AirPort Multiple Products ICMPv6 Router Advertisement / Neighbor Discovery Packet Saturation Remote DoS

AppleShare IP: 6.1; OSVDB ID: 1307 AppleShare IP Invalid Range Request Information Disclosure

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.