CWE-200

Posted on jeudi 5 avril 2018by RbcafeLeave a comment

CWE-200

An information exposure is the intentional or unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information.

Read More

CVE-2016-4655

Posted on jeudi 5 avril 2018by RbcafeLeave a comment

CVE-2016-4655

The kernel in Apple iOS before 9.3.5 allows attackers to obtain sensitive information from memory via a crafted app. (CWE-200)

Read More

CVE-2017-12939

Posted on jeudi 5 avril 2018by RbcafeLeave a comment

CVE-2017-12939

A Remote Code Execution vulnerability was identified in all Windows versions of Unity Editor, e.g., before 5.3.8p2, 5.4.x before 5.4.5p5, 5.5.x before 5.5.4p3, 5.6.x before 5.6.3p1, and 2017.x before 2017.1.0p4. (CWE-20)

Read More

CWE-20

Posted on jeudi 5 avril 2018by RbcafeLeave a comment

CWE-20

The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program.

Read More

CVE-2016-4657

Posted on jeudi 5 avril 2018by RbcafeLeave a comment

CVE-2016-4657

WebKit in Apple iOS before 9.3.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site. (CWE-119)

Read More

CWE-264

Posted on jeudi 5 avril 2018by RbcafeLeave a comment

CWE-264

Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Read More

CVE-2016-4654

Posted on jeudi 5 avril 2018by RbcafeLeave a comment

CVE-2016-4654

IOMobileFrameBuffer in Apple iOS before 9.3.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. (CWE-119 , CWE-264)

Read More

CWE-119

Posted on jeudi 5 avril 2018by RbcafeLeave a comment

CWE-119

The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Read More