Search Results | AttackerKB

Show filters

Topics 219 Users 9,700

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

219 Total Results

Displaying 1-10 of 219

Attacker Value

Unknown

CVE-2017-2471

Disclosure Date: April 02, 2017 (last updated November 26, 2024)

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. watchOS before 3.2 is affected. The issue involves the "WebKit" component. A use-after-free vulnerability allows remote attackers to execute arbitrary code via a crafted web site.

0

Attacker Value

Unknown

CVE-2015-4000

Disclosure Date: May 21, 2015 (last updated October 23, 2024)

The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.

0

Attacker Value

Unknown

CVE-2013-1040

Disclosure Date: September 19, 2013 (last updated October 05, 2023)

WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-09-18-2.

0

Attacker Value

Unknown

CVE-2013-1047

Disclosure Date: September 19, 2013 (last updated October 05, 2023)

WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-09-18-2.

0

Attacker Value

Unknown

CVE-2013-1037

Disclosure Date: September 19, 2013 (last updated October 05, 2023)

WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-09-18-2.

0

Attacker Value

Unknown

CVE-2013-1039

Disclosure Date: September 19, 2013 (last updated October 05, 2023)

WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-09-18-2.

0

Attacker Value

Unknown

CVE-2013-1038

Disclosure Date: September 19, 2013 (last updated October 05, 2023)

WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-09-18-2.

0

Attacker Value

Unknown

CVE-2013-1041

Disclosure Date: September 19, 2013 (last updated October 05, 2023)

WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-09-18-2.

0

Attacker Value

Unknown

CVE-2013-0960

Disclosure Date: March 15, 2013 (last updated October 05, 2023)

WebKit in Apple Safari before 6.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-0961.

0

Attacker Value

Unknown

CVE-2013-0961

Disclosure Date: March 15, 2013 (last updated October 05, 2023)

WebKit in Apple Safari before 6.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-0960.

0