Twenty Year Anniversary

Register | Login

FilesNewsUsersAuthors

Home Files News Services About Contact Add New

Showing 1 - 25 of 176

Operating System: iOS

macOS / iOS OfficeImporter JavaScript Injection

Posted Jul 13, 2018

Authored by Google Security Research, lokihardt

macOS and iOS suffer from a javascript injection bug in OfficeImporter.

tags | exploit, javascript

systems | cisco, ios

MD5 | 8a77e3c5cc05866fe394bdbf6a928d1b

Download | Favorite | Comments (0)

Apple Security Advisory 2018-7-9-1

Posted Jul 9, 2018

Authored by Apple | Site apple.com

Apple Security Advisory 2018-7-9-1 - iOS 11.4.1 is now available and addresses code execution and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution

systems | cisco, apple, ios

advisories | CVE-2018-4248, CVE-2018-4260, CVE-2018-4261, CVE-2018-4262, CVE-2018-4263, CVE-2018-4264, CVE-2018-4265, CVE-2018-4266, CVE-2018-4267, CVE-2018-4270, CVE-2018-4271, CVE-2018-4272, CVE-2018-4273, CVE-2018-4274, CVE-2018-4275, CVE-2018-4277, CVE-2018-4278, CVE-2018-4280, CVE-2018-4282, CVE-2018-4284, CVE-2018-4290, CVE-2018-4293

MD5 | 45d49e10a5c072897d4d320a7c5c9ee5

Download | Favorite | Comments (0)

macOS / iOS Kernel Heap Overflow

Posted Jun 5, 2018

Authored by Google Security Research, ianbeer

The macOS and iOS kernels suffer from a heap overflow due to a lack of lower size check in getvolattrlist.

tags | exploit, overflow, kernel

systems | cisco, ios

advisories | CVE-2018-4243

MD5 | 8bc2ddee4be107c0fed7f5978e377f2c

Download | Favorite | Comments (0)

WhatsApp 2.18.31 iOS Memory Corruption

Posted May 15, 2018

Authored by Juan Sacco

WhatsApp version 2.18.31 on iOS suffers from a remote memory corruption vulnerability.

tags | exploit, remote

systems | ios

MD5 | e1523bcfb6fbea3ce35f934bb2914515

Download | Favorite | Comments (0)

macOS/iOS ReportCrash Mach Port Replacement

Posted May 1, 2018

Authored by Google Security Research, ianbeer

macOS/iOS ReportCrash suffers from a mach port replacement due to failure to respect MIG ownership rules.

tags | exploit

systems | cisco, ios

advisories | CVE-2018-4206

MD5 | afd5e9434d99e4e48e8d1ec634a2c115

Download | Favorite | Comments (0)

Microsoft Intune Design Weakness

Posted Mar 20, 2018

Authored by Stephan Sekula

Compass Security discovered a design weakness in Microsoft Intune's iOS Keychain management. This allows users to access company data even after the device has been unenrolled.

tags | advisory

systems | apple, ios

MD5 | 07ee7ba08f913665a8c31f611a99564a

Download | Favorite | Comments (0)

Apple iOS 11.2.5 / watchOS 4.2.2 / tvOS 11.2.5 bluetoothd Memory Corruption

Posted Feb 28, 2018

Authored by Zimperium zLabs Team

Apple iOS version 11.2.5, watchOS version 4.2.2, and tvOS version 11.2.5 bluetoothd memory corruption proof of concept exploit.

tags | exploit, proof of concept

systems | apple, ios

advisories | CVE-2018-4087

MD5 | 7d79bebc40c0934cc9aa2386f131cd30

Download | Favorite | Comments (0)

Apple Security Advisory 2018-02-19-1

Posted Feb 19, 2018

Authored by Apple | Site apple.com

Apple Security Advisory 2018-02-19-1 - iOS 11.2.6 is now available and addresses a memory corruption vulnerability.

tags | advisory

systems | apple, ios

advisories | CVE-2018-4124

MD5 | a59244475b7d17386f48478e355eefa4

Download | Favorite | Comments (0)

Microsoft Intune App PIN Bypass

Posted Feb 13, 2018

Authored by Stephan Sekula

Compass Security discovered a design weakness in Microsoft Intune's app protection. This weakness allows a malicious user that gets hold of an employee's iOS device to access company data even without knowing the app PIN.

tags | exploit

systems | cisco, ios

MD5 | c46a3d6ea1c728f1cb1a8de7ee96f1f7

Download | Favorite | Comments (0)

Jailbreaking iOS 11.1.2 - An Adventure Into The XNU Kernel

Posted Feb 2, 2018

Authored by Bryce Berchell

Jailbreaking iOS 11.1.2 - An adventure into the XNU kernel.

tags | paper, kernel

systems | ios

MD5 | 93e70d65ed87ce7a4df0216aea36e705

Download | Favorite | Comments (0)

Apple Security Advisory 2018-1-23-1

Posted Jan 24, 2018

Authored by Apple | Site apple.com

Apple Security Advisory 2018-1-23-1 - iOS 11.2.5 is now available and addresses memory corruption, code execution,a nd various other vulnerabilities.

tags | advisory, vulnerability, code execution

systems | cisco, apple, ios

advisories | CVE-2018-4082, CVE-2018-4085, CVE-2018-4086, CVE-2018-4087, CVE-2018-4088, CVE-2018-4089, CVE-2018-4090, CVE-2018-4092, CVE-2018-4093, CVE-2018-4094, CVE-2018-4095, CVE-2018-4096, CVE-2018-4100

MD5 | d3a36ff9acb46e7dfe4f877e027f9e25

Download | Favorite | Comments (0)

Neon 1.6.14 Missing SSL Certificate Validation

Posted Jan 16, 2018

Authored by Rodrigo Laneth

Neon version 1.6.14 for iOS fails to validate SSL certificates.

tags | advisory

systems | ios

advisories | CVE-2018-5258

MD5 | 962ead880d4d940216aec596e9a1046c

Download | Favorite | Comments (0)

Apple Security Advisory 2018-1-8-1

Posted Jan 9, 2018

Authored by Apple | Site apple.com

Apple Security Advisory 2018-1-8-1 - iOS 11.2.2 is now available and and addresses Spectre issues with Safari and WebKit.

tags | advisory

systems | cisco, apple, ios

advisories | CVE-2017-5715, CVE-2017-5753

MD5 | 6b30978ce2ffea24b7346008751663ee

Download | Favorite | Comments (0)

Cisco IOS SNMP Remote Code Execution

Posted Jan 6, 2018

Authored by Artem Kondratenko

Cisco IOS SNMP service remote code execution exploit.

tags | exploit, remote, code execution

systems | cisco, ios

advisories | CVE-2017-6736

MD5 | 5f3951091331dd74f24502404f32ca06

Download | Favorite | Comments (0)

Apple Security Advisory 2017-12-13-6

Posted Dec 16, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-12-13-6 - iOS 11.2 addresses issues relating to interception, memory corruption, and more. This advisory provides additional information for APPLE-SA-2017-12-6-2.

tags | advisory

systems | apple, ios

advisories | CVE-2017-13080, CVE-2017-13833, CVE-2017-13847, CVE-2017-13855, CVE-2017-13856, CVE-2017-13860, CVE-2017-13861, CVE-2017-13862, CVE-2017-13865, CVE-2017-13866, CVE-2017-13867, CVE-2017-13868, CVE-2017-13869, CVE-2017-13870, CVE-2017-13874, CVE-2017-13876, CVE-2017-13879, CVE-2017-2433, CVE-2017-7156, CVE-2017-7157

MD5 | 0a229b7e892cdfb7fc2ff4e89c6e0803

Download | Favorite | Comments (0)

Apple Security Advisory 2017-12-13-1

Posted Dec 15, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-12-13-1 - iOS 11.2.1 is now available and addresses a message handling issue.

tags | advisory

systems | cisco, apple, ios

advisories | CVE-2017-13903

MD5 | fb5dacdec64b5ac2fce3ccc5c9b86a1a

Download | Favorite | Comments (0)

macOS / iOS Kernel IOSurfaceRootUserClient Double-Free

Posted Dec 12, 2017

Authored by Google Security Research, ianbeer

macOS and iOS suffer from a kernel double free vulnerability due to IOSurfaceRootUserClient not respecting MIG ownership rules.

tags | exploit, kernel

systems | cisco, ios

advisories | CVE-2017-13861

MD5 | 184f6e2345e9d5d30fb5251e4ff335fc

Download | Favorite | Comments (0)

macOS / iOS IOTimeSyncClockManagerUserClient Use-After-Free

Posted Dec 12, 2017

Authored by Google Security Research, ianbeer

macOS / iOS suffer from multiple kernel use-after-free vulnerabilities due to incorrect IOKit object lifetime management in IOTimeSyncClockManagerUserClient.

tags | exploit, kernel, vulnerability

systems | cisco, ios

advisories | CVE-2017-13847

MD5 | 91c42e10c5af4753d52cffa762abd8ac

Download | Favorite | Comments (0)

macOS / iOS Kernel Double Free

Posted Dec 12, 2017

Authored by Google Security Research, ianbeer

macOS and iOS suffer from a kernel double free due to incorrect API usage in flow divert socket option handling.

tags | exploit, kernel

systems | cisco, ios

advisories | CVE-2017-13867

MD5 | adea43dc13c8a03941deec88ab491ec2

Download | Favorite | Comments (0)

Apple Security Advisory 2017-12-6-2

Posted Dec 8, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-12-6-2 - iOS 11.2 addresses issues relating to interception, memory corruption, and more.

tags | advisory

systems | cisco, apple, ios

advisories | CVE-2017-13080, CVE-2017-13833, CVE-2017-13847, CVE-2017-13855, CVE-2017-13860, CVE-2017-13861, CVE-2017-13862, CVE-2017-13865, CVE-2017-13867, CVE-2017-13868, CVE-2017-13869, CVE-2017-13874, CVE-2017-13876, CVE-2017-13879

MD5 | cea41172dc6c7e7c2f88844143136668

Download | Favorite | Comments (0)

Apple Security Advisory 2017-10-31-1

Posted Nov 2, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-10-31-1 - iOS 11.1 is now available and addresses denial of service, code execution, and various other vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution

systems | cisco, apple, ios

advisories | CVE-2017-13080, CVE-2017-13783, CVE-2017-13784, CVE-2017-13785, CVE-2017-13788, CVE-2017-13791, CVE-2017-13792, CVE-2017-13793, CVE-2017-13794, CVE-2017-13795, CVE-2017-13796, CVE-2017-13798, CVE-2017-13799, CVE-2017-13802, CVE-2017-13803, CVE-2017-13804, CVE-2017-13805, CVE-2017-13844, CVE-2017-13849, CVE-2017-7113

MD5 | 348630fa91f3c148b06b35cc2358491a

Download | Favorite | Comments (0)

Apple Security Advisory 2017-10-31-9

Posted Nov 1, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-10-31-9 - iOS 11 addresses TLS weaknesses, denial of service, arbitrary code execution, and various other vulnerabilities.

tags | advisory, denial of service, arbitrary, vulnerability, code execution

systems | cisco, apple, ios

advisories | CVE-2016-9063, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-0381, CVE-2017-1000373, CVE-2017-10989, CVE-2017-11103, CVE-2017-11120, CVE-2017-11121, CVE-2017-13782, CVE-2017-13812, CVE-2017-13813, CVE-2017-13814, CVE-2017-13815, CVE-2017-13816, CVE-2017-13817, CVE-2017-13818, CVE-2017-13821, CVE-2017-13822, CVE-2017-13825, CVE-2017-13828, CVE-2017-13830, CVE-2017-13831, CVE-2017-13832, CVE-2017-13834

MD5 | 60d493af6335566be6f6af354b214a48

Download | Favorite | Comments (0)

Apple Support iOS Application 1.1.1 Unencrypted Third Party Analytics

Posted Oct 24, 2017

Authored by David Coomber

Apple Support iOS application versions 1.1.1 and below send potentially sensitive information such as mobile carrier, install date and time, number of app launches, device model, iOS version and screen resolution, unencrypted to a third party site (Adobe Marketing Cloud).

tags | advisory

systems | apple, ios

advisories | CVE-2017-7147

MD5 | 228b93dcbffcf65f58e7495bb25a4bb0

Download | Favorite | Comments (0)

Apple Security Advisory 2017-09-25-4

Posted Sep 28, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-09-25-4 - iOS 11 addresses denial of service, service impersonation, and various other vulnerabilities.

tags | advisory, denial of service, vulnerability

systems | cisco, apple, ios

advisories | CVE-2016-9063, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-0381, CVE-2017-1000373, CVE-2017-10989, CVE-2017-11103, CVE-2017-11120, CVE-2017-11121, CVE-2017-7072, CVE-2017-7078, CVE-2017-7080, CVE-2017-7081, CVE-2017-7083, CVE-2017-7085, CVE-2017-7086, CVE-2017-7087, CVE-2017-7088, CVE-2017-7089, CVE-2017-7090, CVE-2017-7091, CVE-2017-7092, CVE-2017-7093, CVE-2017-7094, CVE-2017-7095, CVE-2017-7096

MD5 | 7de43f34b082d4813011558c39658d04

Download | Favorite | Comments (0)

Apple Security Advisory 2017-09-20-1

Posted Sep 20, 2017

Authored by Apple | Site apple.com

Apple Security Advisory 2017-09-20-1 - This advisory provides additional information for APPLE-SA-2017-09-19-1 iOS 11.

systems | apple, ios

advisories | CVE-2017-7072, CVE-2017-7085, CVE-2017-7088, CVE-2017-7089, CVE-2017-7097, CVE-2017-7103, CVE-2017-7105, CVE-2017-7106, CVE-2017-7108, CVE-2017-7110, CVE-2017-7112, CVE-2017-7115, CVE-2017-7116, CVE-2017-7118, CVE-2017-7133

MD5 | 1126779df59254510621fee42dd2fe72

Download | Favorite | Comments (0)